Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-0001 (GCVE-0-2022-0001)
Vulnerability from cvelistv5 – Published: 2022-03-11 00:00 – Updated: 2025-05-05 16:44
VLAI
EPSS
Summary
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
Severity
6.5 (Medium)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- information disclosure
- CWE-noinfo Not enough information
Assigner
References
7 references
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| n/a | Intel(R) Processors |
Affected:
See references
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2025-04-01T16:11:32.250Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://www.vicarius.io/vsociety/posts/cve-2022-0001-detect-specter-vulnerability?prevUrl=wizard"
},
{
"url": "https://www.vicarius.io/vsociety/posts/cve-2022-0001-mitigate-specter-vulnerability?prevUrl=wizard"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html"
},
{
"name": "[oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2022/03/18/2"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20220818-0004/"
},
{
"name": "VU#155143",
"tags": [
"third-party-advisory",
"x_transferred"
],
"url": "https://www.kb.cert.org/vuls/id/155143"
}
],
"title": "CVE Program Container",
"x_generator": {
"engine": "ADPogram 0.0.1"
}
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2022-0001",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-23T13:21:07.709784Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-noinfo Not enough information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-05-05T16:44:34.239Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Intel(R) Processors",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "See references"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": " information disclosure ",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-04-09T15:05:59.454Z",
"orgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"shortName": "intel"
},
"references": [
{
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html"
},
{
"name": "[oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2022/03/18/2"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"url": "https://security.netapp.com/advisory/ntap-20220818-0004/"
},
{
"name": "VU#155143",
"tags": [
"third-party-advisory"
],
"url": "https://www.kb.cert.org/vuls/id/155143"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "6dda929c-bb53-4a77-a76d-48e79601a1ce",
"assignerShortName": "intel",
"cveId": "CVE-2022-0001",
"datePublished": "2022-03-11T00:00:00.000Z",
"dateReserved": "2021-10-15T00:00:00.000Z",
"dateUpdated": "2025-05-05T16:44:34.239Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-0001",
"date": "2026-06-07",
"epss": "0.00311",
"percentile": "0.54668"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_p5921b:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E6D6CEE1-25DF-43C5-AEBB-49585B64236A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_p5931b:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31E2104F-0CE3-4B9D-88B3-35D982C36562\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_p5942b:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9D860FEC-BA79-4FEE-A79C-88AA857358E4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_p5962b:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C2CEF8A6-2445-4B63-822D-81F6AC708D62\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_x6200fe:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89231773-9D9B-434A-A6A3-8527C4F6FEBB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_x6211e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A85EA674-2537-4323-AEDA-FA356489E7DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_x6212re:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F85599DD-3F80-4EB0-9753-D24EDD8D76CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_x6413e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1B3348F4-8E2B-42BE-9F3A-48DFF5CE0047\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_x6425e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F068F4F-8CCD-4218-871C-BEABEB0DAB55\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_x6425re:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7313975C-41A5-4657-8758-1C16F947BE4C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:atom_x6427fe:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2FBE4406-9979-4723-833C-176F051E6389\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_5305u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"39831D4E-743A-4C09-900F-24DDAB5D1B22\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_6305:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D63F16DE-E30E-4268-B079-E07FD28355BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_6305e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"936DAD12-11D6-4AAF-B48D-5076C94BF30C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_6600he:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F11BB81D-8243-4B19-835C-6E0B4341894A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g5205u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8BFB5A51-399C-4AC5-BA09-E74C5AD520EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g5305u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F42D5DAA-8279-4A4F-A843-EBA0814952BC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g5900:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"545649F6-46CA-40CB-8A00-5DD40F6A83B5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g5900t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D42AC70C-B114-4795-8769-D9AF12298456\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g5905:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6DEF520D-9427-4C5A-81F0-FCED5E2A8B99\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g5905t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4B773674-1DB0-41D8-A758-2AF49F4722D7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g5920:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"153ABD9D-2C72-40C6-8DF9-3EB7D1D35B09\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g5925:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4036274A-CC6F-48B2-BF2E-DF51C4148B93\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g6900:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ABAF1125-B4F7-4BC9-B9DA-CA9125D4BC65\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_g6900t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4AA8490E-45D6-4B6E-AF98-B75385574D6D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_j4005:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"652EC574-B9B6-4747-AE72-39D1379A596B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_j4025:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"522A9A57-B8D8-4C61-92E3-BE894A765C12\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_j4105:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A588BEB3-90B5-482E-B6C4-DC6529B0B4C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_j4125:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"826BAF04-E174-483D-8700-7FA1EAC4D555\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_j6413:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F7A8BF58-1D33-484A-951C-808443912BE8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_n4000:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C8771AB4-2F51-494D-8C86-3524BB4219C7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_n4020:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D7E822D-994F-410D-B13C-939449FFC293\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_n4100:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB5576F2-4914-427C-9518-ED7D16630CC5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_n4120:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3ABB7C52-863F-4291-A05B-422EE9615FAE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_n4500:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B54D15DF-53EA-4611-932A-EDB8279F582A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_n4504:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"06499DE1-DA07-4C39-BBAC-FC57F4E0D4C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_n5100:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"96D6F5D3-3559-47AD-8201-C9D34417DC09\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_n5105:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AA455AC5-8434-4B59-BE89-E82CDACD2AEC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:celeron_n6211:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"406E9139-BCFF-406B-A856-57896D27B752\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1000g1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6DAA00D4-A8AA-44AA-9609-0A40BD4FB2E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1000g4:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF64D95C-653A-4864-A572-CD0A64B6CDF3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1005g1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"30B2F570-1DD9-49C7-BB72-0EA0E9A417C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10100:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1DA9CBE9-CF87-495B-8D80-5DDDCD2044B6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10100f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"614B1B4E-E1D7-417F-86D1-92F75D597E36\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10100t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4BD11E86-B786-43C8-9B67-8F680CC30451\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10100te:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3D740D69-83B6-4DBF-8617-9B1E96DFF4FE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10105:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8BB09ACB-EFFF-4C2F-BEB5-AE1EEDC1EC2E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10105f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A8B15567-BFEA-43BE-9817-98A1F5548541\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10105t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"984C7C7A-2F8E-4918-8526-64A080943E0E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10110u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"44BF0AFB-E9DC-4EA5-BFFF-48F896C655E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10300:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C7AFC285-2248-45E7-9009-1402628F17E4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10300t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"078DAE1F-8581-44FB-83EA-575685928C4F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10305:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"887BEC29-AD0D-4BEB-B50B-F961629BBF23\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10305t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93859A03-DE41-4E7B-8646-93925ACBFC42\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10320:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FD8BD84-B6F9-48D5-8903-2C56C12EFFEE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-10325:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9877F278-641B-4F83-B420-AB4E1018EA9E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-11100he:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2ABF9AEE-BE1C-40EF-9E5F-6F3641BA7CDE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1110g4:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2C60AF0D-983D-454E-8940-209C471DC041\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1115g4:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9F26C6DA-ED6B-444A-A63A-5155FCA4F0DB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1115g4e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"66BAF09D-8199-4579-B25A-E7C5177385E6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1115gre:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21EA30AA-713F-40AD-8C94-C1129198EE98\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1120g4:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0D9B687-C3EE-4AF5-B9BE-7F0698D0F258\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1125g4:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"114DF43C-839F-4066-AA30-8DC16B1D6687\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-12100:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5A87E241-4E74-4F89-8E5A-1A3980A5DDDF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-12100f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C4325860-834E-4042-BDB2-5EB5A2D0F1F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-12100t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0765F36F-94F8-45BE-8AF9-3373E5E567F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-1220p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BC0F50A0-5F1D-4D30-B5F3-C94C44C323D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-12300:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31A8AC04-8182-4BF2-9FDA-B2D607222EDA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-12300t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"082596F0-6707-4175-A9CB-868D853F7362\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i3-l13g4:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"39FD6F9C-FEEA-4D52-8745-6477B50AFB0C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10110y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"62BFF15A-0C78-45BC-8E71-EDF624AC162D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10200h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB69A6F1-9B4D-4CDA-8388-E7FCBB2163DB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10210u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"71615EAF-4DF4-4B9E-BF34-6ED0371A53D7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10210y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"376B6DD7-1284-4BD9-88A4-5C34303CC5D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10300h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"403E8A3A-28C2-4329-BF31-1A530E317959\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1030g4:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F5F6F725-217C-48FF-86DD-E91A24156121\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1030g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"365696BF-CE3D-4CE6-92A8-413DDE43774E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10310y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C8515D29-3823-4F9B-9578-8BB52336A2A7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1035g1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BE048AEB-094D-4102-9DBF-488FEB53FF89\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1035g4:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3907FA31-6F1A-45BA-ACF3-1C8EE05D9BA0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1035g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D48D9F5F-95BD-4F6B-8A37-D1CAA7D2DB25\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10400:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4BF497A0-30BC-42A4-A000-C0D564D4872A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10400f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B3025301-52D3-43D7-B6AB-F3F0A5C882DC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10400h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7B2A62F5-A8DF-4565-B89F-9C58B1FB8D94\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10400t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9466A6CC-8D69-4EB5-94E2-611297120462\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10500:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B2D116C4-698B-45BC-8622-87E142B37922\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10500t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36836EB0-99DD-4217-9182-1E9FC5656C42\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10500te:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CD507601-CD6D-4F11-A4A7-790FB740B401\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10505:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A8C26205-C602-46F6-B611-424709325D6C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10600:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"464587A0-9EAA-4DF5-AFEB-15F2FA9CD407\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10600k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1940F59A-67FD-45F9-9C78-51A50687628F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10600kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4B722E2A-1262-44FD-8F7C-F9A9A5C78744\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-10600t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4DEFF6A7-0DE2-4BEE-80DC-BBAB259647AB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11260h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2BCD9C35-95D0-49E6-A9AC-E3AA8CD3F7B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11300h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B40E9EC2-A8A6-4800-9F9E-B1237832D6F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1130g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"158CC66D-32E5-4396-8E5D-4D90EE9AB62C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11320h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"55227C1C-D6CE-40AD-A5AA-7143E0A7AEF7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1135g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E84F0381-296A-408E-90D4-A316EE894A9D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11400:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"092E3E45-5F58-412F-BAC9-C3B5290D8349\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11400f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8EA7E6D0-0ADA-4BE1-8273-69AB3DE3BA36\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11400h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6FCAFC0-EEE2-43E4-AE90-1803588B5689\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11400t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A8640175-3BC2-4C7B-A5A3-51E5677EDECA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1140g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7077CBF1-1FC8-4AF9-8B39-A15871FFD3CA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1145g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"53D902B5-D135-4961-AED9-EA6DF06534B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1145g7e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2910EB49-C9C6-4FC9-AA55-E7A0DAE28B93\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1145gre:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B858B433-9DA0-4224-B94C-4962FB3A4138\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11500:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9F6B5FC3-8E55-430A-A55A-AF541690C576\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11500h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"55568460-F318-48FB-90E4-55CBBAF13E59\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11500t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C7AFF680-DBC6-432E-A6DE-E7E7E4F2F26A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1155g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ADB84973-3DAC-4458-A817-943302F5EFF7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11600:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1B26C730-32FA-4D51-88FA-E724147147BF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11600k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AFF7C5BF-E151-42DB-B0CF-E2589904C9A3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11600kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E12D6BD2-7D32-4194-84D3-A0DE4B88BFF0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-11600t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F3EC487F-B9A8-410F-AE1F-8D1B74BA77D6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12400:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"74A47464-BB99-44BB-A1B7-D8469BEAF408\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12400f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"12882E19-1107-48E7-9ECD-A2891B8900D9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12400t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"896688AD-84FF-4270-8F44-61764C0052B2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1240p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1646C42-B42B-451F-9B9D-AEE7CF74E9C8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12450h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9729F36E-F830-4397-8B0E-A91BF5601F76\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12500:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0FFEC0A8-69C2-4BE9-B510-5C111C6EE9BC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12500h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"047CB3C6-C53C-4BA5-AB1C-5D739B30F9FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12500t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"91BF3506-7257-4E37-98AC-DDF0283C1FA2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-1250p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"65E0B274-5CFA-481E-8355-64D7BC16D871\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12600:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9CC5B69A-022B-4F8C-BAAC-97AFBAEA9730\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12600h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"63684C47-972B-45A3-9234-111F25FD35B1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12600k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"28CE6C6D-7D12-4E4F-BB76-54BF1C0A7B97\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12600kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5A4AFFB3-6117-4BCC-BE63-814042823182\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-12600t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F880C0CA-815A-49D2-8BA6-F220E3E467D8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-8200y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2AC12E92-33CB-4603-AC14-3351CE1D4E3A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-8210y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E62309E-1071-4569-8C9A-11748D629CAB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-8265u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D3E166F-3D9F-4D0D-924A-147883598EA3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-8310y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"71294A32-F3DD-45EA-A0FC-C3EA0351FA29\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-8365u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C9054F35-AAB5-481E-B512-EDF4C3F2EA2F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-9300h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9A735A90-47E1-44C6-AE76-F6C7FFDCD4D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-9400:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8AC9F52F-6669-459A-A0A9-8F472E1F2761\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-9400f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7E91B92-4DB7-4866-8370-C6F8616D3D81\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-9400h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"85F465BF-4548-45EB-AC40-384F4E6248EE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-9600k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B1DFFFEB-CC63-4F51-8828-C5D4E0287264\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-9600kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B176D141-26B0-477E-B2DB-2E48D6FB82AE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i5-l16g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9A4FD69F-FF53-43F4-97C8-40867DB67958\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10510u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"494A828B-F2BF-40CA-AAFB-7D2AF2BAF3AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10510y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FD97F84B-ED73-4FFD-8634-10631FEE03EA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1060g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6CDC1BE-6A64-425C-AF2C-7DFB28FB604A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10610u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D974FFFD-BBCC-444C-9EF1-AE478EEDB6E2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1065g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2243674B-E505-4FED-B063-953A1569EA30\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10700:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E1978F85-5BA5-468E-B797-7FA7EB4F489D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10700e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B8D3D0CA-C981-4091-99F9-203DA8F156F2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10700f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7EB23D0C-D2BC-4E7F-94AF-CAF171A64307\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10700k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6CC9312B-40A7-4D4A-A61C-3BA865C29F63\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10700kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7EBECBE5-2BF0-4175-81CC-C6D054C819B2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10700t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB33CC4F-9D51-4A11-B063-6E78F0D71555\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10700te:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B7092B8E-DD3F-440D-B2AA-F0E5FC4A9725\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10710u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DA491401-C484-4F77-ABF8-D389C94BF7B7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10750h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"66F8B600-B618-48E1-81EE-14A8A843F09F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10810u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"42ADD367-82C8-4761-AEBA-A0200C5D1CEE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10850h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4AF75C0E-BA48-4C56-8398-109D06B5A5D3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10870h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"25329A6F-9D49-4EA7-B9FB-8C2FA5343475\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-10875h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"22921B65-513F-4ACE-80A2-4A31199BB5EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11370h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"63719B1D-5A98-44E3-80D8-CF0B4C1C6F80\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11375h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D5365D3B-1B0B-416D-ACFB-23843FD25EAF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11390h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2556EF0A-B29F-4E9E-BB77-955CBC851EFA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1160g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D8F5409D-23C7-4CA9-951C-8EEEAE31DFDE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1165g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5601E40A-96E1-4321-9682-055A1C607488\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11700:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CF36D9CC-2FD8-4D08-8712-E625D4754613\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11700f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3252CF19-9D1D-4A46-9C94-0E7255CDDD8C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11700k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E11C7F38-3313-4F6D-9D5D-E61C89E716B1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11700kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"70B0C976-3B68-4647-909A-5D574D711C7D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11700t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA18192E-7DBB-45BB-8568-CA7159AF8CE2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11800h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B2FDB568-5340-4DD8-B933-1CD64C370BD6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1180g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D28DF93B-E15D-47D3-B9C0-4AEE8B7FADD0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11850h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"78F2DD1D-DB6F-44D1-BE3B-C798C09CC5F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-11850he:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"104B88E7-3B8F-4C4E-AD07-CAD1DCD7898B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1185g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"12ADA9A2-6E64-4F17-B369-816639F0D3BF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1185g7e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"514B7B5E-D60D-464A-8CB0-273044FD2E09\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1185gre:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AFB608EE-83AF-4192-93E1-7DDBA5F6A54C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1195g7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B807B5D8-BCDB-4398-8ADC-DBD1BD8D2B88\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1260p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"989B6E1C-7681-4A11-B9F4-D94C47D57BFB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-12650h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F75A1B08-CE1F-47A5-B706-104A62861932\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-12700:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1E458521-2BD9-4719-9F83-6ECC3BC19B70\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-12700f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2B8762D1-5333-4EED-B31E-338052061237\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-12700h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"67DCFA7E-734D-4FE0-913E-74D85564ABE4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-12700k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FEF502AE-BD3F-461B-9476-FB04818DA1F2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-12700kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"445022AC-A3CD-402E-AF44-2C1BC2B790E7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-12700t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BF63765B-1BAE-4B53-9BA8-FDFDD2C58417\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1270p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D78245E2-BE22-4BD5-9252-44FF5815D7CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-12800h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9E1DF00E-1B1A-4FCA-BEEF-7D2BF9F001A2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-1280p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"91A093D4-A800-4F28-8480-85D62068CB35\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-7640x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F946429E-3362-41E5-88D9-FA01BE8D4312\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-7740x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8E9EF2F2-750C-4CB7-9858-69D7FFA4EF31\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-7800x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8580A81E-8BDE-4EB5-B830-6AA7550A25C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-7820x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"43756EB8-9F85-4499-99F0-43E69CA3F470\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-8500y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"957F3AC9-D071-4932-B2C9-1643FB78BC7A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-8565u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F41025AC-6EFE-4562-B1D1-BAB004875B06\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-8665u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"34DD3CCB-91D5-48D6-80BC-CA643385BCE4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-9700k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1FB0C1DA-60C6-4C9E-99D6-7A47696DACD8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-9700kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F2EB81B1-7DEF-4CC3-ADC9-A4CB1042E406\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-9750hf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31CD303F-AAE9-4635-987D-742031232BDD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i7-9850h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D0320CB-05E3-4D5B-BCEF-D862566B0AA2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10850h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D48C9306-80AD-40CC-9516-E1B6F5A63556\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10850k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"39F9F143-0AB4-4302-82B8-B4EA790EB08D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10885h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FE73B0A0-E275-449D-8ADD-86AE188DE82A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10900:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CE06C64A-1610-4340-98CF-AC91258AB215\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10900e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C27F79F3-EA0A-429C-8DA9-BC276A94AFB7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10900f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B07609EB-E10B-4253-938E-81566036D81B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10900k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C9B7AEF3-7A62-43B2-8F0C-70E5A2CDB29A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10900kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2CC44D69-AAAB-4524-9D12-F1A606D57831\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10900t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D23D2887-1246-4EA4-B8B6-57BC7FB869E6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10900te:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BEFC46D5-B23D-4513-9669-4DC53662F87B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10900x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B93E897C-5D7B-4532-99D9-53192A1F776A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10920x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"33D0D618-D738-47F5-B7F7-C7F07972C893\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10940x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C7A147E8-0778-49CE-92EF-ED1950138528\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-10980hk:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3D264277-00CB-4FCC-ADAA-38536609D0F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-11900:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5CC25725-73F6-4948-B17A-A05E8978EB78\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-11900f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D9BFA32-89B3-4E26-B980-2694B5378D8B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-11900h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"65E2A7C5-78D9-4F75-B8A2-5EB3ECEFBFF3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-11900k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F2D04A37-79EE-467B-BD8A-0CA0BDD85F0A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-11900kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7FECF6BE-2CED-4510-91C5-195686C9C421\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-11900t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B903E2A0-EE73-4F13-AB26-8F5644462E94\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-11950h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"170B497C-05F2-46B5-92CD-ACF7C0BE1711\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-11980hk:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EEF53EA8-8EB4-455C-A986-405DBB122D3B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-12900:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0D6A5B34-780D-46F2-8DC8-F310F9201FE9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-12900f:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E6D78411-A542-48D7-B840-22290B3A98A4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-12900h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"86AABCC6-4CA4-4A2D-9DC6-D0AD6FF99BB1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-12900hk:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"58A1375C-4B33-4557-9BA0-D03EAC350D86\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-12900k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"783F6EC3-354C-4501-9557-E1BFFC0852DC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-12900kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FC8F48DC-E327-4B3D-BA52-901D21A6412E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-12900t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"82004D25-6F97-4549-B98E-148E44134529\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-7900x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8B97260E-1D7A-45B5-AD86-EBF8CA259FE0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-7920x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"58002875-D63D-4ABD-A8B7-DCAEB7E94AE4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-7940x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BAC07903-D4B7-423F-9F79-7DF45E5350BB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-7960x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2FBC4FB5-7C2D-4E10-80BB-3951FFA3A6CF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9800x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2B32C5EE-D845-471C-85EA-DA5F9B04F01B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9820x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D93CC48C-DCCB-442A-98D5-3165CCFAE7F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9880h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"659206BB-510A-47F8-8B6E-FD030A6BE1DA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9900k:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C3257F5-CA55-4F35-9D09-5B85253DE786\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9900kf:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6F8CEA0-1CD6-4F17-85E3-C1CB04D9833A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9900x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"655E770E-B9EE-4B08-B1EE-F393C7F68941\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9920x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DBC47200-8F3F-4969-AABA-39F4B1E4E263\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9940x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7EB17629-2454-478B-8E1A-AC2D2FC2233C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9960x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A28B6DE9-D383-4CA2-94D5-4C9CFF95E01E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_i9-9980hk:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A48A2969-DC53-48E2-A5CA-4DF2B00D1960\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:core_m3-8100y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E5AFFC8B-3AC1-49B4-9A73-18A3EC928591\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_7505:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BD6B51B5-96AA-44C8-9539-9D7F67143DC3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6400:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A263FA56-5F1F-4E91-A354-38648E130685\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6400t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D24E8214-881A-4C15-A544-FB3FD5D14DCA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6405:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1EDE72E-3734-4FB5-BC77-B7C3838D41F5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6405t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9E07450B-D81B-474D-9150-C9D8A62D44A0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6405u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E78C7A9B-7DCE-416F-909E-B3CC52AEBE9C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6500:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9A892B60-7FD3-41A6-9997-586B76757416\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6500t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4701D592-F06C-4713-9736-19DB130B5E2B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6505:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B3E6063A-23C9-4845-B575-5D330B6C68F6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6505t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D50C73A4-D52E-4560-B725-61F416E18505\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6600:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"25570E2C-BBE9-402F-9631-FA5014767CE1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g6605:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D59D57C2-CFB5-486E-A340-E63C7D7A8B6D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g7400:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"998DCE68-F426-47C5-80F7-BFE42FD69DFB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_gold_g7400t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FBE04ADB-3037-41E8-8DF4-8588FDFB759A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_j6425:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D97C7A90-D8C6-4901-BCA1-E40DA173AA9D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_n6415:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"638FA431-71EA-4668-AFF2-989A4994ED12\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_silver_j5005:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EC903FA4-2C4E-4EBB-8BFA-579844B87354\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_silver_j5040:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"667F2E6C-C2FD-4E4B-9CC4-2EF33A74F61B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_silver_n5000:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2DF16D51-5662-47C3-8911-0FACEEDB9D80\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_silver_n5030:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ECC4430E-E4B1-454F-8C95-6412D34454C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_silver_n6000:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31282347-8DCB-4B37-A853-DFD9D5AF31EA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:pentium_silver_n6005:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"42841FAC-A6EC-44F3-9FCD-B4549A783014\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_bronze_3204:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E687CADE-6E49-4284-BD41-6CA2FDD846FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_bronze_3206r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A7540F0-7EB8-4F64-AA31-9AF3D79BEC46\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_d1700:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D94D7B29-565F-4E62-A958-27FFDDD7399E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_d2700:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"594DDCAB-96D4-4999-824E-7597B971B6DC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2278g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"63650DBF-4DBD-4655-AE93-5CBE53F8E0FB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2278ge:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"00912C9C-D386-445E-B390-E96361ECDFA6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2278gel:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"60B582A1-784C-4BE8-A0D5-706DE01D769E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2286m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"556637E1-9502-41E7-B91D-082C92F233A1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2288g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5EA930BC-EF68-4AD5-AA1B-0659358028D5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2314:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A8EA870-2228-4E81-A417-30E040A5C0E1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2324g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"656D31B6-1E8D-4A44-9D7A-023051E7050A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2334:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"49EEE5AA-3867-4137-B165-5004C34C77B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2336:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B2A38417-1DB2-4C85-80D9-D3968BF7A83B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2356g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F74E9E4-F84C-4B7F-8A42-20EEC60986DB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2374g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"74F99F83-A7E6-4AFD-BC42-7348EF6613AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2378:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5A62A9F4-2B98-4F2D-9143-08D1689E38AC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2378g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B8FD06CB-F456-44BD-900B-06131DC68B6B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2386g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9044310E-4DF9-47BA-9D05-C1405DC8CDB2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_e-2388g:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA881CDA-1C16-43F1-A7D5-69502512A21C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5215:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8DA109ED-BC4D-4F70-81B2-3CE0E2B3D9DA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5215l:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"070C20AB-66F2-4EE2-8134-5E40DBB9B9E6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5217:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9CA49CF7-C6BE-4337-A0A8-A603D8955EE9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5218:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9C8F7F6B-847A-479D-B6B1-BBA331D06DE0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5218b:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4C375A9D-C7CE-49A6-B08D-9CAB22E16D32\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5218n:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF8D06DC-6B8A-4B7B-BB3E-778D432CFEF1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5218r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E06531E6-126A-4FBB-BEBB-F9023C4738F1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5218t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93B8CDF0-1489-4E4C-B004-A22E06FC10D7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5220:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6ACF161-472E-4088-85C2-5940C9C88D45\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5220r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2E0B94F6-EC15-4C12-8BA5-CC6602A7A725\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5220s:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"067C65E5-5392-4DAF-A6BD-640D78C19CE1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5220t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A1647DAC-CED6-4DAF-8F82-A42D6D691DF0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5222:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D93CC498-F558-4C2F-9E14-7897060CA9FE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5315y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6839AE9B-9A8A-4312-80FC-0549C675A815\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5317:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1E0E7358-1EC1-43DA-99B3-A2D6D57E0121\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5318h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"43808CCF-1EF0-41CE-983D-DD6BB775895E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5318n:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F2C5D3DE-5506-4F16-B7F9-5032A1277D23\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5318s:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ED598260-2A9B-46F7-AA85-0DA97DA0D42D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5318y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"06F1CFD2-8F32-4CE8-9D9B-C65B332775B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5320:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7DD98889-58A1-4A5A-B79A-B2DA9EDA63DA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5320h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3BF1F73B-4736-40BC-9053-951B5BF1059E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_5320t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EDA47606-176C-4F6B-A316-4C536B63FA4E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6208u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"76D48CFC-1322-4C53-8B53-88E7ACC724BE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6209u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F6456D0-32AE-44A9-9F63-AD64B5E49182\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6210u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"38EA99F9-22C2-47ED-9DDD-928E19C4C51E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6212u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9F8867B2-F297-4D30-AD43-77B0F67FAE3E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6222v:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"178345A5-9A38-4C8F-B3BB-430276FA4998\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6226:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"831A7D63-4638-480C-94CB-ED06613BA75C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6226r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"178D9E36-79EC-4672-8E46-0FD6597CA1CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6230:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EED0D492-ADAB-41ED-A283-024D3CED441F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6230n:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2BBB5A97-EA4F-454C-819C-DE1CE7018E7A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6230r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D9733E69-E7CF-444C-B72C-AC8E5DEF2449\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6230t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0FD24563-9157-4DE1-95ED-D4E3E879219E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6234:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F83F8602-6679-4B3C-BBDD-3BDB2B317F70\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6238:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3CD3E45C-1943-42BA-9F6D-EA64D67BF954\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6238l:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF7B4C84-1258-4F2F-B8A3-55353B3D13BA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6238r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9B27F755-4C38-4469-8A9D-C9266BDA53ED\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6238t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0E21977E-7085-46C5-8E89-F952C2EBCE04\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6240:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB72D13B-5880-4CB2-8E80-CB6A39B5A302\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6240l:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"02BCB7D2-4B68-4FF8-BFC9-06C39A708C62\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6240r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AAF31FBF-20FB-4B8A-ADE1-E29BB8B8A702\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6240y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7BF7298E-BC07-4C42-8F9C-C3B0CDFC86C2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6242:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0C8292CC-DACB-489A-BCB2-73DC2C6F944C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6242r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D83AEDF-2671-4278-8088-BA517192AB3E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6244:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BF72F37A-2F28-40E6-A84B-0E1DF63B1812\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6246:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8C1742C-96CC-4BCA-928E-D6B53ED2DB0E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6246r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EAE9CE6-DA95-40B0-AE65-656FA4603D1A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6248:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CAD0B5C3-633D-4F2A-8D56-8FA83F1B581C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6248r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5241B3E0-F968-4B16-8BF8-191C6F7B224A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6250:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5EFB52DD-5B7D-45BA-B249-A134D1B9EBD3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6250l:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B82FC910-F3AB-42BF-9740-EC09F0AC179D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6252:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1BAE2B11-B0F5-415F-BD6B-E285EF9C9095\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6252n:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3BA58EFB-7672-4902-ABC1-65217AA617AD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6254:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"96E2764D-7D6A-4CE0-A628-FFE966A6462F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6256:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1D66D18C-17F2-4259-B1D8-7C63797A024C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6258r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"25C8DFB5-9D8B-4370-849A-DC061910E54F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6262v:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B704835-1250-44E1-923C-5DE2F4DD25D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6312u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF7D9572-8D03-4D54-B0E1-C0A3F3F90FCF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6314u:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FE3CA224-B5DE-4451-9CF9-929ABEA242EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6326:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A3D8E340-AE91-4F29-9F22-E0CE6718FC13\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6328h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"710DBCD5-788D-4140-AC16-EC6E126CFA66\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6328hl:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A767EC83-AAED-4FEA-A35E-A503369FE4FB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6330:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FB1ACDED-85B4-4A11-BD03-8E1B9563B7F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6330h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D6C4A47D-7F66-4ACC-9C69-0A355D46CDC1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6330n:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"20821868-F7D2-4132-8D63-98E1089DB46C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6334:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4EB9295A-8832-4670-B268-FBD0BC086447\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6336y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"489BD4AC-50C6-422B-A2B2-00A70E611114\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6338:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C5694238-F4E5-4689-ADD2-67C25762ED92\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6338n:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A57D44C0-AA8D-46B0-8923-ADB312E3937F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6338t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A551BBB-76CD-4C26-913F-B02C66E5D846\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6342:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8A4A44F2-68BF-4709-946B-C976DA3A9C7E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6346:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"038AC553-5523-4687-843D-6FEA7264EDEA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6348:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8DE5D09C-3272-4810-9F41-97BDBBFE4160\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6348h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"59C5122F-D822-4E71-A417-88EB51F1786B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_gold_6354:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F14C3438-B876-45B9-85F5-61354207AF8A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8253:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"94A6DA7A-7C97-40E1-B31A-B92BB658C429\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8256:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"54AF128B-9984-4C91-B7F6-968DE376C3BE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8260:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"28B167F1-63FA-4C86-84AB-836ABF84E6E3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8260l:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"955420F9-3A3F-40E0-9940-DD43C5C78D62\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8260y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BC4A437C-6C00-4729-91CC-D27EB3542633\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8268:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"74ED727D-B1A9-4F4B-92C7-3F00F3A80013\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8270:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A2C24951-B3FA-48E6-AFAC-6CA0D2348230\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8276:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"185E8FBC-9EE9-472E-867B-0B0DEEECA13E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8276l:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AB3C00A0-C28A-46EB-853D-DAE3819399D9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8280:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0951DB50-AC8E-4C17-A2A9-DD4A198C4DD2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8280l:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E0CAB607-87B2-49F4-9FAB-662D5EA3D11C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8351n:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7C504C3-7EEE-4A0F-8589-19C1E806E690\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8352m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5230F6AF-88CB-4EE2-B292-8B9A7217D10F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8352s:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B45C39D-03E8-46C1-88DD-94E382F4A961\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8352v:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF2DC691-025A-441E-AAC2-C8583F54733D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8352y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8FB7EE6-6808-4879-A0A3-E85FE5CB37CF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8353h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EBE07EA7-4CDF-4038-A948-6AC126C7F6AD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8354h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"06A2241C-37AE-41AE-A8D1-D9AB18CCE16D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8356h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB6DEAA1-3209-4B49-B931-43E8C1C5BE14\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8358:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CCE086F8-5C8B-4F0C-B53A-76BD4E67B678\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8358p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"00B21B5C-0FDE-4A8E-A9FC-5CF822A74B20\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8360h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EB15368B-21A1-429E-8B9C-A095C4E8BA67\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8360hl:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA925F96-6DDD-4F71-BF13-710C8A89D860\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8360y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9E41414A-6B0B-4511-A9A1-7FF99DD25DB6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8362:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"91EB66B4-8F1B-4F35-9371-17FB761997CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8368:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CBDFD1AF-2716-4C95-ADFF-79EFA915C286\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8368q:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5390A12B-80BD-4889-BF0F-95E65D10D037\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8376h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C1D6444A-B9CF-4D70-A8A9-E6B57B6F13DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8376hl:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"05637A96-AF09-4FF5-A918-AB369AA2D1CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8380:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"33FA0279-D587-471E-8EC0-211F78DA4DFD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8380h:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D1CC27DB-11D4-412A-BC69-CF32A0CABCF8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_8380hl:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8FE9694-F0E7-4B45-82A1-065DA96B9794\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_9221:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DBC93757-5FD7-403D-B5ED-CC8793002352\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_9222:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A7019D4-58E0-4B73-93B8-D3B0E86BF2D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_9242:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6DF8D8C4-29EA-4D09-87AB-A570403BA0E6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_platinum_9282:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89421EC5-52E5-441F-AD3B-5C5E964F836D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4208:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA909754-B60A-4B30-AF42-4C8734E155AF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4209t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EBEFB056-0872-434B-9630-28A1AAEAD470\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4210:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21A62CB9-FB01-45CB-9E10-E72D87C0E1F1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4210r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CD8EBFCC-AD76-4285-93BD-D14219C6EA5D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4210t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7FF7E334-6DC7-44B5-A102-649A68300C80\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4214:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E1B4F7FE-61A3-417A-BAA9-E686A76F3A94\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4214r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9DE4C87E-CB23-4804-9BBD-2533C5E1D6D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4214y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7305838B-84CA-4BB8-A350-B2D2844F1041\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4215:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D356D196-8AB0-4387-A644-C5E68174A60C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4215r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89587A92-6234-40C3-83DB-F72319FFBC79\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4216:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4F50C03E-CBEB-4738-BDF4-DC296CE9DFA7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4309y:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EB267830-FA6E-4C2E-8BBE-C3DA12A6A33D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4310:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D557D68C-8279-4BFD-9EA6-17A83754B8FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4310t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7ECA0BC9-1CA4-4B95-B98F-9098B2550309\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4314:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1298CF87-124D-450B-928D-F39CCA2BAF42\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_silver_4316:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF12820F-A2BE-44BF-A85D-7F4623898DAB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-10855:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"65A473FF-F3AD-41F5-B63A-3D6DDB0BD216\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-10855m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"853DE44A-84C9-4959-865F-D538DF895647\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-10885m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"13326C69-C160-482F-BF28-5425B57BE738\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-11155mle:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F15EF0E-37CF-4944-8B6B-A82B4348CDC0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-11155mre:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"92D12220-840B-4397-889C-9649F34B7E25\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-11555mle:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6AB926B2-077B-4752-80EC-D39446115FCD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-11555mre:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C8C1D750-1FE9-40F8-BCB9-77D13C13906C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-11855m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D07040D2-2ADC-4CC4-860F-74A7C64FD6FB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-11865mld:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D2ED18E-241E-4154-9793-FB0E60F9C00F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-11865mre:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D59D80E8-5A2C-402F-8AE3-766ECEDA14F3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-11955m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F66D2E5-BD5B-406D-82A0-4E1E32EDC337\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1250:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"557E240A-6760-434E-9C3A-1E5E9129912D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1250p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B7565F3-5D41-4A1F-948B-1A55E3AD3EF8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1270:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C71A52C1-1FBF-4730-8234-700F87D5E74D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1270p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7B930DF9-C425-41AF-9736-0BD611C79CA7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1290:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9DF260A0-CDD8-4EE1-B3F4-73CD02FDCD11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1290e:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B84F7DC-EE67-4748-8AE2-7070A6F79BAD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1290p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C156433-48A3-4B2E-A8DB-AF1F09B2EFA6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1290t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D78A1CFF-F05E-429C-A9AA-935078574A3B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1290te:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FE28AD41-2287-4F2B-924C-30B66A320443\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1300:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CE3A7AD3-D7D4-40A5-B1B6-A818B5ACE6D4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1350:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E31FFECA-F663-4B59-9800-1C6A8BD84626\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1350p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E3F194D4-9425-470E-B812-CD92B5C5A68A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1370:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E426811-F97D-42CE-B06D-41CDA84E1B55\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1370p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4F5F5950-C21F-4142-BA1E-E074FAF249F5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1390:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E2BC8A89-4CF3-473B-9251-9FA5FF8ADBD6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1390p:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"30EE6B10-84FC-4D9D-8F39-4B7000CC85AF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-1390t:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5AFDA5D5-F00F-40CC-B492-C433200A491C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-2223:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"708D6E00-A2E5-4B08-88E7-C872ACFC341D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-2225:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0CD8EE0E-2BA3-49DD-91D1-81AB67F16475\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-2235:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AC75E5CF-4241-45A8-AD45-1F7F077CEEA1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-2245:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D132291B-AADD-49E3-ADD6-333E1F1D8DFE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-2255:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2ADF328B-D286-4C36-9F21-11A58D55D03A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-2265:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6D23470-A702-426D-A63C-4F7BAC158762\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-2275:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"750A77C5-1367-4E04-9ABF-1AB2D46C29C6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-2295:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D1340A29-3428-4FAD-AA07-7F625915E34D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-3223:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ADA1FA19-A836-4D6A-8C2D-718ECE6866D2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-3225:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3ECEBDB0-2E0A-416B-9737-82C1FC65A06C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-3235:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C39B6A99-7060-4011-8FA3-E5ABE5C02813\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-3245:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DF9E723E-1095-424E-A90D-380CA0D2795E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-3245m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"35380FB9-90FF-405F-8E2E-01C1DD209540\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-3265:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2215D655-0EA9-4530-AB68-7B1C7360D692\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-3265m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"020B6FED-EAE2-478C-8FF4-CB75F24E9A9D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-3275:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AE519C62-F5BB-461C-91EF-2979CD506C63\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:intel:xeon_w-3275m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F693457C-3529-4E62-A672-1B862F235D0F\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6EDB6772-7FDB-45FF-8D72-952902A7EE56\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9955F62A-75D3-4347-9AD3-5947FC365838\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7A6D77C7-A2F4-4700-AB5A-3EC853496ECA\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.\"}, {\"lang\": \"es\", \"value\": \"La compartici\\u00f3n no transparente de selectores de predicci\\u00f3n de rama entre contextos en algunos procesadores Intel(R) puede permitir que un usuario autorizado permita potencialmente una divulgaci\\u00f3n de informaci\\u00f3n por medio del acceso local\"}]",
"id": "CVE-2022-0001",
"lastModified": "2024-11-21T06:37:45.587",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.0, \"impactScore\": 4.0}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2022-03-11T18:15:25.143",
"references": "[{\"url\": \"http://www.openwall.com/lists/oss-security/2022/03/18/2\", \"source\": \"secure@intel.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20220818-0004/\", \"source\": \"secure@intel.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html\", \"source\": \"secure@intel.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.kb.cert.org/vuls/id/155143\", \"source\": \"secure@intel.com\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2022.html\", \"source\": \"secure@intel.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2022/03/18/2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20220818-0004/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.kb.cert.org/vuls/id/155143\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2022.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}]",
"sourceIdentifier": "secure@intel.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-0001\",\"sourceIdentifier\":\"secure@intel.com\",\"published\":\"2022-03-11T18:15:25.143\",\"lastModified\":\"2025-05-05T17:17:29.393\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.\"},{\"lang\":\"es\",\"value\":\"La compartici\u00f3n no transparente de selectores de predicci\u00f3n de rama entre contextos en algunos procesadores Intel(R) puede permitir que un usuario autorizado permita potencialmente una divulgaci\u00f3n de informaci\u00f3n por medio del acceso local\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.0,\"impactScore\":4.0},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.0,\"impactScore\":4.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_p5921b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6D6CEE1-25DF-43C5-AEBB-49585B64236A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_p5931b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31E2104F-0CE3-4B9D-88B3-35D982C36562\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_p5942b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D860FEC-BA79-4FEE-A79C-88AA857358E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_p5962b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2CEF8A6-2445-4B63-822D-81F6AC708D62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_x6200fe:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89231773-9D9B-434A-A6A3-8527C4F6FEBB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_x6211e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A85EA674-2537-4323-AEDA-FA356489E7DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_x6212re:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F85599DD-3F80-4EB0-9753-D24EDD8D76CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_x6413e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B3348F4-8E2B-42BE-9F3A-48DFF5CE0047\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_x6425e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F068F4F-8CCD-4218-871C-BEABEB0DAB55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_x6425re:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7313975C-41A5-4657-8758-1C16F947BE4C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:atom_x6427fe:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2FBE4406-9979-4723-833C-176F051E6389\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_5305u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39831D4E-743A-4C09-900F-24DDAB5D1B22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_6305:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D63F16DE-E30E-4268-B079-E07FD28355BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_6305e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"936DAD12-11D6-4AAF-B48D-5076C94BF30C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_6600he:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F11BB81D-8243-4B19-835C-6E0B4341894A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g5205u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BFB5A51-399C-4AC5-BA09-E74C5AD520EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g5305u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F42D5DAA-8279-4A4F-A843-EBA0814952BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g5900:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"545649F6-46CA-40CB-8A00-5DD40F6A83B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g5900t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D42AC70C-B114-4795-8769-D9AF12298456\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g5905:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DEF520D-9427-4C5A-81F0-FCED5E2A8B99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g5905t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B773674-1DB0-41D8-A758-2AF49F4722D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g5920:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"153ABD9D-2C72-40C6-8DF9-3EB7D1D35B09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g5925:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4036274A-CC6F-48B2-BF2E-DF51C4148B93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g6900:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABAF1125-B4F7-4BC9-B9DA-CA9125D4BC65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_g6900t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AA8490E-45D6-4B6E-AF98-B75385574D6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_j4005:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"652EC574-B9B6-4747-AE72-39D1379A596B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_j4025:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"522A9A57-B8D8-4C61-92E3-BE894A765C12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_j4105:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A588BEB3-90B5-482E-B6C4-DC6529B0B4C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_j4125:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"826BAF04-E174-483D-8700-7FA1EAC4D555\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_j6413:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7A8BF58-1D33-484A-951C-808443912BE8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_n4000:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8771AB4-2F51-494D-8C86-3524BB4219C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_n4020:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D7E822D-994F-410D-B13C-939449FFC293\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_n4100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB5576F2-4914-427C-9518-ED7D16630CC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_n4120:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3ABB7C52-863F-4291-A05B-422EE9615FAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_n4500:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B54D15DF-53EA-4611-932A-EDB8279F582A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_n4504:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06499DE1-DA07-4C39-BBAC-FC57F4E0D4C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_n5100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96D6F5D3-3559-47AD-8201-C9D34417DC09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_n5105:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA455AC5-8434-4B59-BE89-E82CDACD2AEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:celeron_n6211:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"406E9139-BCFF-406B-A856-57896D27B752\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1000g1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DAA00D4-A8AA-44AA-9609-0A40BD4FB2E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1000g4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF64D95C-653A-4864-A572-CD0A64B6CDF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1005g1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30B2F570-1DD9-49C7-BB72-0EA0E9A417C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1DA9CBE9-CF87-495B-8D80-5DDDCD2044B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10100f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"614B1B4E-E1D7-417F-86D1-92F75D597E36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10100t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BD11E86-B786-43C8-9B67-8F680CC30451\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10100te:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D740D69-83B6-4DBF-8617-9B1E96DFF4FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10105:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BB09ACB-EFFF-4C2F-BEB5-AE1EEDC1EC2E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10105f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8B15567-BFEA-43BE-9817-98A1F5548541\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10105t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"984C7C7A-2F8E-4918-8526-64A080943E0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10110u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"44BF0AFB-E9DC-4EA5-BFFF-48F896C655E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10300:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7AFC285-2248-45E7-9009-1402628F17E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10300t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"078DAE1F-8581-44FB-83EA-575685928C4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10305:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"887BEC29-AD0D-4BEB-B50B-F961629BBF23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10305t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93859A03-DE41-4E7B-8646-93925ACBFC42\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10320:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FD8BD84-B6F9-48D5-8903-2C56C12EFFEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-10325:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9877F278-641B-4F83-B420-AB4E1018EA9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-11100he:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2ABF9AEE-BE1C-40EF-9E5F-6F3641BA7CDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1110g4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C60AF0D-983D-454E-8940-209C471DC041\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1115g4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F26C6DA-ED6B-444A-A63A-5155FCA4F0DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1115g4e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66BAF09D-8199-4579-B25A-E7C5177385E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1115gre:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21EA30AA-713F-40AD-8C94-C1129198EE98\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1120g4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0D9B687-C3EE-4AF5-B9BE-7F0698D0F258\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1125g4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"114DF43C-839F-4066-AA30-8DC16B1D6687\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-12100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A87E241-4E74-4F89-8E5A-1A3980A5DDDF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-12100f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4325860-834E-4042-BDB2-5EB5A2D0F1F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-12100t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0765F36F-94F8-45BE-8AF9-3373E5E567F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-1220p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC0F50A0-5F1D-4D30-B5F3-C94C44C323D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-12300:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31A8AC04-8182-4BF2-9FDA-B2D607222EDA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-12300t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"082596F0-6707-4175-A9CB-868D853F7362\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i3-l13g4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39FD6F9C-FEEA-4D52-8745-6477B50AFB0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10110y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62BFF15A-0C78-45BC-8E71-EDF624AC162D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10200h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB69A6F1-9B4D-4CDA-8388-E7FCBB2163DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10210u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71615EAF-4DF4-4B9E-BF34-6ED0371A53D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10210y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"376B6DD7-1284-4BD9-88A4-5C34303CC5D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10300h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"403E8A3A-28C2-4329-BF31-1A530E317959\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1030g4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5F6F725-217C-48FF-86DD-E91A24156121\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1030g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"365696BF-CE3D-4CE6-92A8-413DDE43774E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10310y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8515D29-3823-4F9B-9578-8BB52336A2A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1035g1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE048AEB-094D-4102-9DBF-488FEB53FF89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1035g4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3907FA31-6F1A-45BA-ACF3-1C8EE05D9BA0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1035g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D48D9F5F-95BD-4F6B-8A37-D1CAA7D2DB25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BF497A0-30BC-42A4-A000-C0D564D4872A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10400f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3025301-52D3-43D7-B6AB-F3F0A5C882DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10400h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B2A62F5-A8DF-4565-B89F-9C58B1FB8D94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10400t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9466A6CC-8D69-4EB5-94E2-611297120462\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10500:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2D116C4-698B-45BC-8622-87E142B37922\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10500t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36836EB0-99DD-4217-9182-1E9FC5656C42\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10500te:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD507601-CD6D-4F11-A4A7-790FB740B401\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10505:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8C26205-C602-46F6-B611-424709325D6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10600:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"464587A0-9EAA-4DF5-AFEB-15F2FA9CD407\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10600k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1940F59A-67FD-45F9-9C78-51A50687628F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10600kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B722E2A-1262-44FD-8F7C-F9A9A5C78744\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-10600t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DEFF6A7-0DE2-4BEE-80DC-BBAB259647AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11260h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2BCD9C35-95D0-49E6-A9AC-E3AA8CD3F7B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11300h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B40E9EC2-A8A6-4800-9F9E-B1237832D6F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1130g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"158CC66D-32E5-4396-8E5D-4D90EE9AB62C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11320h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55227C1C-D6CE-40AD-A5AA-7143E0A7AEF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1135g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E84F0381-296A-408E-90D4-A316EE894A9D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"092E3E45-5F58-412F-BAC9-C3B5290D8349\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11400f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EA7E6D0-0ADA-4BE1-8273-69AB3DE3BA36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11400h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6FCAFC0-EEE2-43E4-AE90-1803588B5689\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11400t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8640175-3BC2-4C7B-A5A3-51E5677EDECA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1140g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7077CBF1-1FC8-4AF9-8B39-A15871FFD3CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1145g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53D902B5-D135-4961-AED9-EA6DF06534B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1145g7e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2910EB49-C9C6-4FC9-AA55-E7A0DAE28B93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1145gre:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B858B433-9DA0-4224-B94C-4962FB3A4138\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11500:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F6B5FC3-8E55-430A-A55A-AF541690C576\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11500h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55568460-F318-48FB-90E4-55CBBAF13E59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11500t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7AFF680-DBC6-432E-A6DE-E7E7E4F2F26A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1155g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ADB84973-3DAC-4458-A817-943302F5EFF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11600:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B26C730-32FA-4D51-88FA-E724147147BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11600k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFF7C5BF-E151-42DB-B0CF-E2589904C9A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11600kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E12D6BD2-7D32-4194-84D3-A0DE4B88BFF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-11600t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3EC487F-B9A8-410F-AE1F-8D1B74BA77D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74A47464-BB99-44BB-A1B7-D8469BEAF408\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12400f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12882E19-1107-48E7-9ECD-A2891B8900D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12400t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"896688AD-84FF-4270-8F44-61764C0052B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1240p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1646C42-B42B-451F-9B9D-AEE7CF74E9C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12450h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9729F36E-F830-4397-8B0E-A91BF5601F76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12500:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FFEC0A8-69C2-4BE9-B510-5C111C6EE9BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12500h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"047CB3C6-C53C-4BA5-AB1C-5D739B30F9FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12500t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91BF3506-7257-4E37-98AC-DDF0283C1FA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-1250p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65E0B274-5CFA-481E-8355-64D7BC16D871\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12600:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9CC5B69A-022B-4F8C-BAAC-97AFBAEA9730\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12600h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63684C47-972B-45A3-9234-111F25FD35B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12600k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28CE6C6D-7D12-4E4F-BB76-54BF1C0A7B97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12600kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A4AFFB3-6117-4BCC-BE63-814042823182\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-12600t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F880C0CA-815A-49D2-8BA6-F220E3E467D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-8200y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AC12E92-33CB-4603-AC14-3351CE1D4E3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-8210y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E62309E-1071-4569-8C9A-11748D629CAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-8265u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D3E166F-3D9F-4D0D-924A-147883598EA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-8310y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71294A32-F3DD-45EA-A0FC-C3EA0351FA29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-8365u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9054F35-AAB5-481E-B512-EDF4C3F2EA2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-9300h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A735A90-47E1-44C6-AE76-F6C7FFDCD4D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-9400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8AC9F52F-6669-459A-A0A9-8F472E1F2761\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-9400f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7E91B92-4DB7-4866-8370-C6F8616D3D81\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-9400h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"85F465BF-4548-45EB-AC40-384F4E6248EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-9600k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1DFFFEB-CC63-4F51-8828-C5D4E0287264\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-9600kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B176D141-26B0-477E-B2DB-2E48D6FB82AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i5-l16g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A4FD69F-FF53-43F4-97C8-40867DB67958\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10510u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"494A828B-F2BF-40CA-AAFB-7D2AF2BAF3AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10510y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD97F84B-ED73-4FFD-8634-10631FEE03EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1060g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6CDC1BE-6A64-425C-AF2C-7DFB28FB604A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10610u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D974FFFD-BBCC-444C-9EF1-AE478EEDB6E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1065g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2243674B-E505-4FED-B063-953A1569EA30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10700:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1978F85-5BA5-468E-B797-7FA7EB4F489D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10700e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8D3D0CA-C981-4091-99F9-203DA8F156F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10700f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EB23D0C-D2BC-4E7F-94AF-CAF171A64307\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10700k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6CC9312B-40A7-4D4A-A61C-3BA865C29F63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10700kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EBECBE5-2BF0-4175-81CC-C6D054C819B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10700t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB33CC4F-9D51-4A11-B063-6E78F0D71555\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10700te:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7092B8E-DD3F-440D-B2AA-F0E5FC4A9725\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10710u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA491401-C484-4F77-ABF8-D389C94BF7B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10750h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66F8B600-B618-48E1-81EE-14A8A843F09F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10810u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"42ADD367-82C8-4761-AEBA-A0200C5D1CEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10850h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AF75C0E-BA48-4C56-8398-109D06B5A5D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10870h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25329A6F-9D49-4EA7-B9FB-8C2FA5343475\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-10875h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22921B65-513F-4ACE-80A2-4A31199BB5EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11370h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63719B1D-5A98-44E3-80D8-CF0B4C1C6F80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11375h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5365D3B-1B0B-416D-ACFB-23843FD25EAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11390h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2556EF0A-B29F-4E9E-BB77-955CBC851EFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1160g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8F5409D-23C7-4CA9-951C-8EEEAE31DFDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1165g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5601E40A-96E1-4321-9682-055A1C607488\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11700:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF36D9CC-2FD8-4D08-8712-E625D4754613\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11700f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3252CF19-9D1D-4A46-9C94-0E7255CDDD8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11700k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E11C7F38-3313-4F6D-9D5D-E61C89E716B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11700kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"70B0C976-3B68-4647-909A-5D574D711C7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11700t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA18192E-7DBB-45BB-8568-CA7159AF8CE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11800h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2FDB568-5340-4DD8-B933-1CD64C370BD6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1180g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D28DF93B-E15D-47D3-B9C0-4AEE8B7FADD0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11850h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78F2DD1D-DB6F-44D1-BE3B-C798C09CC5F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-11850he:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"104B88E7-3B8F-4C4E-AD07-CAD1DCD7898B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1185g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12ADA9A2-6E64-4F17-B369-816639F0D3BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1185g7e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"514B7B5E-D60D-464A-8CB0-273044FD2E09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1185gre:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFB608EE-83AF-4192-93E1-7DDBA5F6A54C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1195g7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B807B5D8-BCDB-4398-8ADC-DBD1BD8D2B88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1260p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"989B6E1C-7681-4A11-B9F4-D94C47D57BFB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-12650h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F75A1B08-CE1F-47A5-B706-104A62861932\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-12700:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E458521-2BD9-4719-9F83-6ECC3BC19B70\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-12700f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B8762D1-5333-4EED-B31E-338052061237\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-12700h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67DCFA7E-734D-4FE0-913E-74D85564ABE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-12700k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEF502AE-BD3F-461B-9476-FB04818DA1F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-12700kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"445022AC-A3CD-402E-AF44-2C1BC2B790E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-12700t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF63765B-1BAE-4B53-9BA8-FDFDD2C58417\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1270p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D78245E2-BE22-4BD5-9252-44FF5815D7CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-12800h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E1DF00E-1B1A-4FCA-BEEF-7D2BF9F001A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-1280p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91A093D4-A800-4F28-8480-85D62068CB35\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-7640x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F946429E-3362-41E5-88D9-FA01BE8D4312\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-7740x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E9EF2F2-750C-4CB7-9858-69D7FFA4EF31\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-7800x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8580A81E-8BDE-4EB5-B830-6AA7550A25C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-7820x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43756EB8-9F85-4499-99F0-43E69CA3F470\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-8500y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"957F3AC9-D071-4932-B2C9-1643FB78BC7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-8565u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F41025AC-6EFE-4562-B1D1-BAB004875B06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-8665u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34DD3CCB-91D5-48D6-80BC-CA643385BCE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-9700k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FB0C1DA-60C6-4C9E-99D6-7A47696DACD8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-9700kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2EB81B1-7DEF-4CC3-ADC9-A4CB1042E406\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-9750hf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31CD303F-AAE9-4635-987D-742031232BDD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i7-9850h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D0320CB-05E3-4D5B-BCEF-D862566B0AA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10850h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D48C9306-80AD-40CC-9516-E1B6F5A63556\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10850k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39F9F143-0AB4-4302-82B8-B4EA790EB08D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10885h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE73B0A0-E275-449D-8ADD-86AE188DE82A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10900:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE06C64A-1610-4340-98CF-AC91258AB215\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10900e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C27F79F3-EA0A-429C-8DA9-BC276A94AFB7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10900f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B07609EB-E10B-4253-938E-81566036D81B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10900k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C9B7AEF3-7A62-43B2-8F0C-70E5A2CDB29A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10900kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CC44D69-AAAB-4524-9D12-F1A606D57831\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10900t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D23D2887-1246-4EA4-B8B6-57BC7FB869E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10900te:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEFC46D5-B23D-4513-9669-4DC53662F87B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10900x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B93E897C-5D7B-4532-99D9-53192A1F776A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10920x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33D0D618-D738-47F5-B7F7-C7F07972C893\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10940x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7A147E8-0778-49CE-92EF-ED1950138528\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-10980hk:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D264277-00CB-4FCC-ADAA-38536609D0F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-11900:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5CC25725-73F6-4948-B17A-A05E8978EB78\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-11900f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D9BFA32-89B3-4E26-B980-2694B5378D8B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-11900h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65E2A7C5-78D9-4F75-B8A2-5EB3ECEFBFF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-11900k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2D04A37-79EE-467B-BD8A-0CA0BDD85F0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-11900kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7FECF6BE-2CED-4510-91C5-195686C9C421\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-11900t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B903E2A0-EE73-4F13-AB26-8F5644462E94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-11950h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"170B497C-05F2-46B5-92CD-ACF7C0BE1711\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-11980hk:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEF53EA8-8EB4-455C-A986-405DBB122D3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-12900:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D6A5B34-780D-46F2-8DC8-F310F9201FE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-12900f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6D78411-A542-48D7-B840-22290B3A98A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-12900h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86AABCC6-4CA4-4A2D-9DC6-D0AD6FF99BB1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-12900hk:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58A1375C-4B33-4557-9BA0-D03EAC350D86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-12900k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"783F6EC3-354C-4501-9557-E1BFFC0852DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-12900kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC8F48DC-E327-4B3D-BA52-901D21A6412E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-12900t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82004D25-6F97-4549-B98E-148E44134529\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-7900x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8B97260E-1D7A-45B5-AD86-EBF8CA259FE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-7920x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58002875-D63D-4ABD-A8B7-DCAEB7E94AE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-7940x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BAC07903-D4B7-423F-9F79-7DF45E5350BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-7960x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2FBC4FB5-7C2D-4E10-80BB-3951FFA3A6CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9800x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B32C5EE-D845-471C-85EA-DA5F9B04F01B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9820x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D93CC48C-DCCB-442A-98D5-3165CCFAE7F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9880h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"659206BB-510A-47F8-8B6E-FD030A6BE1DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9900k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C3257F5-CA55-4F35-9D09-5B85253DE786\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9900kf:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6F8CEA0-1CD6-4F17-85E3-C1CB04D9833A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9900x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"655E770E-B9EE-4B08-B1EE-F393C7F68941\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9920x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBC47200-8F3F-4969-AABA-39F4B1E4E263\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9940x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EB17629-2454-478B-8E1A-AC2D2FC2233C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9960x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A28B6DE9-D383-4CA2-94D5-4C9CFF95E01E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_i9-9980hk:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A48A2969-DC53-48E2-A5CA-4DF2B00D1960\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:core_m3-8100y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5AFFC8B-3AC1-49B4-9A73-18A3EC928591\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_7505:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD6B51B5-96AA-44C8-9539-9D7F67143DC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A263FA56-5F1F-4E91-A354-38648E130685\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6400t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D24E8214-881A-4C15-A544-FB3FD5D14DCA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6405:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1EDE72E-3734-4FB5-BC77-B7C3838D41F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6405t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E07450B-D81B-474D-9150-C9D8A62D44A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6405u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E78C7A9B-7DCE-416F-909E-B3CC52AEBE9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6500:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A892B60-7FD3-41A6-9997-586B76757416\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6500t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4701D592-F06C-4713-9736-19DB130B5E2B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6505:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3E6063A-23C9-4845-B575-5D330B6C68F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6505t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D50C73A4-D52E-4560-B725-61F416E18505\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6600:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25570E2C-BBE9-402F-9631-FA5014767CE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g6605:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D59D57C2-CFB5-486E-A340-E63C7D7A8B6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g7400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"998DCE68-F426-47C5-80F7-BFE42FD69DFB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_gold_g7400t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBE04ADB-3037-41E8-8DF4-8588FDFB759A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_j6425:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D97C7A90-D8C6-4901-BCA1-E40DA173AA9D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_n6415:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"638FA431-71EA-4668-AFF2-989A4994ED12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_silver_j5005:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC903FA4-2C4E-4EBB-8BFA-579844B87354\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_silver_j5040:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"667F2E6C-C2FD-4E4B-9CC4-2EF33A74F61B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_silver_n5000:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DF16D51-5662-47C3-8911-0FACEEDB9D80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_silver_n5030:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ECC4430E-E4B1-454F-8C95-6412D34454C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_silver_n6000:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31282347-8DCB-4B37-A853-DFD9D5AF31EA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:pentium_silver_n6005:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"42841FAC-A6EC-44F3-9FCD-B4549A783014\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_bronze_3204:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E687CADE-6E49-4284-BD41-6CA2FDD846FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_bronze_3206r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A7540F0-7EB8-4F64-AA31-9AF3D79BEC46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_d1700:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D94D7B29-565F-4E62-A958-27FFDDD7399E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_d2700:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"594DDCAB-96D4-4999-824E-7597B971B6DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2278g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63650DBF-4DBD-4655-AE93-5CBE53F8E0FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2278ge:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00912C9C-D386-445E-B390-E96361ECDFA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2278gel:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"60B582A1-784C-4BE8-A0D5-706DE01D769E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2286m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"556637E1-9502-41E7-B91D-082C92F233A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2288g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5EA930BC-EF68-4AD5-AA1B-0659358028D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2314:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A8EA870-2228-4E81-A417-30E040A5C0E1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2324g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"656D31B6-1E8D-4A44-9D7A-023051E7050A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2334:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49EEE5AA-3867-4137-B165-5004C34C77B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2336:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2A38417-1DB2-4C85-80D9-D3968BF7A83B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2356g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F74E9E4-F84C-4B7F-8A42-20EEC60986DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2374g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74F99F83-A7E6-4AFD-BC42-7348EF6613AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2378:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A62A9F4-2B98-4F2D-9143-08D1689E38AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2378g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8FD06CB-F456-44BD-900B-06131DC68B6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2386g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9044310E-4DF9-47BA-9D05-C1405DC8CDB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_e-2388g:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA881CDA-1C16-43F1-A7D5-69502512A21C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5215:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DA109ED-BC4D-4F70-81B2-3CE0E2B3D9DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5215l:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"070C20AB-66F2-4EE2-8134-5E40DBB9B9E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5217:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9CA49CF7-C6BE-4337-A0A8-A603D8955EE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5218:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C8F7F6B-847A-479D-B6B1-BBA331D06DE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5218b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C375A9D-C7CE-49A6-B08D-9CAB22E16D32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5218n:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF8D06DC-6B8A-4B7B-BB3E-778D432CFEF1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5218r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E06531E6-126A-4FBB-BEBB-F9023C4738F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5218t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93B8CDF0-1489-4E4C-B004-A22E06FC10D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5220:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6ACF161-472E-4088-85C2-5940C9C88D45\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5220r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E0B94F6-EC15-4C12-8BA5-CC6602A7A725\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5220s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"067C65E5-5392-4DAF-A6BD-640D78C19CE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5220t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1647DAC-CED6-4DAF-8F82-A42D6D691DF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5222:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D93CC498-F558-4C2F-9E14-7897060CA9FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5315y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6839AE9B-9A8A-4312-80FC-0549C675A815\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5317:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E0E7358-1EC1-43DA-99B3-A2D6D57E0121\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5318h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43808CCF-1EF0-41CE-983D-DD6BB775895E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5318n:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2C5D3DE-5506-4F16-B7F9-5032A1277D23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5318s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED598260-2A9B-46F7-AA85-0DA97DA0D42D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5318y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06F1CFD2-8F32-4CE8-9D9B-C65B332775B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5320:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7DD98889-58A1-4A5A-B79A-B2DA9EDA63DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5320h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BF1F73B-4736-40BC-9053-951B5BF1059E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_5320t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EDA47606-176C-4F6B-A316-4C536B63FA4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6208u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76D48CFC-1322-4C53-8B53-88E7ACC724BE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6209u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F6456D0-32AE-44A9-9F63-AD64B5E49182\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6210u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38EA99F9-22C2-47ED-9DDD-928E19C4C51E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6212u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F8867B2-F297-4D30-AD43-77B0F67FAE3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6222v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"178345A5-9A38-4C8F-B3BB-430276FA4998\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6226:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"831A7D63-4638-480C-94CB-ED06613BA75C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6226r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"178D9E36-79EC-4672-8E46-0FD6597CA1CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6230:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EED0D492-ADAB-41ED-A283-024D3CED441F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6230n:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2BBB5A97-EA4F-454C-819C-DE1CE7018E7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6230r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9733E69-E7CF-444C-B72C-AC8E5DEF2449\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6230t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FD24563-9157-4DE1-95ED-D4E3E879219E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6234:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F83F8602-6679-4B3C-BBDD-3BDB2B317F70\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6238:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3CD3E45C-1943-42BA-9F6D-EA64D67BF954\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6238l:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF7B4C84-1258-4F2F-B8A3-55353B3D13BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6238r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B27F755-4C38-4469-8A9D-C9266BDA53ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6238t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E21977E-7085-46C5-8E89-F952C2EBCE04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6240:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB72D13B-5880-4CB2-8E80-CB6A39B5A302\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6240l:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02BCB7D2-4B68-4FF8-BFC9-06C39A708C62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6240r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AAF31FBF-20FB-4B8A-ADE1-E29BB8B8A702\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6240y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BF7298E-BC07-4C42-8F9C-C3B0CDFC86C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6242:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C8292CC-DACB-489A-BCB2-73DC2C6F944C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6242r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D83AEDF-2671-4278-8088-BA517192AB3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6244:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF72F37A-2F28-40E6-A84B-0E1DF63B1812\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6246:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8C1742C-96CC-4BCA-928E-D6B53ED2DB0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6246r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EAE9CE6-DA95-40B0-AE65-656FA4603D1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6248:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CAD0B5C3-633D-4F2A-8D56-8FA83F1B581C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6248r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5241B3E0-F968-4B16-8BF8-191C6F7B224A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6250:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5EFB52DD-5B7D-45BA-B249-A134D1B9EBD3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6250l:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B82FC910-F3AB-42BF-9740-EC09F0AC179D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6252:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BAE2B11-B0F5-415F-BD6B-E285EF9C9095\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6252n:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BA58EFB-7672-4902-ABC1-65217AA617AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6254:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96E2764D-7D6A-4CE0-A628-FFE966A6462F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6256:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D66D18C-17F2-4259-B1D8-7C63797A024C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6258r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25C8DFB5-9D8B-4370-849A-DC061910E54F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6262v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B704835-1250-44E1-923C-5DE2F4DD25D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6312u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF7D9572-8D03-4D54-B0E1-C0A3F3F90FCF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6314u:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE3CA224-B5DE-4451-9CF9-929ABEA242EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6326:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3D8E340-AE91-4F29-9F22-E0CE6718FC13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6328h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"710DBCD5-788D-4140-AC16-EC6E126CFA66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6328hl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A767EC83-AAED-4FEA-A35E-A503369FE4FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6330:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB1ACDED-85B4-4A11-BD03-8E1B9563B7F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6330h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6C4A47D-7F66-4ACC-9C69-0A355D46CDC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6330n:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20821868-F7D2-4132-8D63-98E1089DB46C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6334:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4EB9295A-8832-4670-B268-FBD0BC086447\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6336y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"489BD4AC-50C6-422B-A2B2-00A70E611114\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6338:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5694238-F4E5-4689-ADD2-67C25762ED92\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6338n:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A57D44C0-AA8D-46B0-8923-ADB312E3937F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6338t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A551BBB-76CD-4C26-913F-B02C66E5D846\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6342:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A4A44F2-68BF-4709-946B-C976DA3A9C7E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6346:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"038AC553-5523-4687-843D-6FEA7264EDEA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6348:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DE5D09C-3272-4810-9F41-97BDBBFE4160\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6348h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59C5122F-D822-4E71-A417-88EB51F1786B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_gold_6354:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F14C3438-B876-45B9-85F5-61354207AF8A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8253:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"94A6DA7A-7C97-40E1-B31A-B92BB658C429\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8256:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54AF128B-9984-4C91-B7F6-968DE376C3BE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8260:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28B167F1-63FA-4C86-84AB-836ABF84E6E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8260l:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"955420F9-3A3F-40E0-9940-DD43C5C78D62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8260y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC4A437C-6C00-4729-91CC-D27EB3542633\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8268:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74ED727D-B1A9-4F4B-92C7-3F00F3A80013\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8270:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2C24951-B3FA-48E6-AFAC-6CA0D2348230\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8276:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"185E8FBC-9EE9-472E-867B-0B0DEEECA13E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8276l:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AB3C00A0-C28A-46EB-853D-DAE3819399D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8280:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0951DB50-AC8E-4C17-A2A9-DD4A198C4DD2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8280l:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0CAB607-87B2-49F4-9FAB-662D5EA3D11C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8351n:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7C504C3-7EEE-4A0F-8589-19C1E806E690\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8352m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5230F6AF-88CB-4EE2-B292-8B9A7217D10F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8352s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B45C39D-03E8-46C1-88DD-94E382F4A961\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8352v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF2DC691-025A-441E-AAC2-C8583F54733D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8352y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8FB7EE6-6808-4879-A0A3-E85FE5CB37CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8353h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EBE07EA7-4CDF-4038-A948-6AC126C7F6AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8354h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06A2241C-37AE-41AE-A8D1-D9AB18CCE16D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8356h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB6DEAA1-3209-4B49-B931-43E8C1C5BE14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8358:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCE086F8-5C8B-4F0C-B53A-76BD4E67B678\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8358p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00B21B5C-0FDE-4A8E-A9FC-5CF822A74B20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8360h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB15368B-21A1-429E-8B9C-A095C4E8BA67\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8360hl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA925F96-6DDD-4F71-BF13-710C8A89D860\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8360y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E41414A-6B0B-4511-A9A1-7FF99DD25DB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8362:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91EB66B4-8F1B-4F35-9371-17FB761997CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8368:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBDFD1AF-2716-4C95-ADFF-79EFA915C286\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8368q:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5390A12B-80BD-4889-BF0F-95E65D10D037\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8376h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1D6444A-B9CF-4D70-A8A9-E6B57B6F13DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8376hl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05637A96-AF09-4FF5-A918-AB369AA2D1CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8380:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33FA0279-D587-471E-8EC0-211F78DA4DFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8380h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1CC27DB-11D4-412A-BC69-CF32A0CABCF8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_8380hl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8FE9694-F0E7-4B45-82A1-065DA96B9794\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_9221:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBC93757-5FD7-403D-B5ED-CC8793002352\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_9222:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A7019D4-58E0-4B73-93B8-D3B0E86BF2D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_9242:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DF8D8C4-29EA-4D09-87AB-A570403BA0E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_platinum_9282:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89421EC5-52E5-441F-AD3B-5C5E964F836D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4208:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA909754-B60A-4B30-AF42-4C8734E155AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4209t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EBEFB056-0872-434B-9630-28A1AAEAD470\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4210:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21A62CB9-FB01-45CB-9E10-E72D87C0E1F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4210r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD8EBFCC-AD76-4285-93BD-D14219C6EA5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4210t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7FF7E334-6DC7-44B5-A102-649A68300C80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4214:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1B4F7FE-61A3-417A-BAA9-E686A76F3A94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4214r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DE4C87E-CB23-4804-9BBD-2533C5E1D6D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4214y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7305838B-84CA-4BB8-A350-B2D2844F1041\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4215:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D356D196-8AB0-4387-A644-C5E68174A60C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4215r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89587A92-6234-40C3-83DB-F72319FFBC79\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4216:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F50C03E-CBEB-4738-BDF4-DC296CE9DFA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4309y:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB267830-FA6E-4C2E-8BBE-C3DA12A6A33D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4310:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D557D68C-8279-4BFD-9EA6-17A83754B8FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4310t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7ECA0BC9-1CA4-4B95-B98F-9098B2550309\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4314:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1298CF87-124D-450B-928D-F39CCA2BAF42\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_silver_4316:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF12820F-A2BE-44BF-A85D-7F4623898DAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-10855:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65A473FF-F3AD-41F5-B63A-3D6DDB0BD216\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-10855m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"853DE44A-84C9-4959-865F-D538DF895647\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-10885m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13326C69-C160-482F-BF28-5425B57BE738\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-11155mle:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F15EF0E-37CF-4944-8B6B-A82B4348CDC0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-11155mre:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"92D12220-840B-4397-889C-9649F34B7E25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-11555mle:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6AB926B2-077B-4752-80EC-D39446115FCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-11555mre:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8C1D750-1FE9-40F8-BCB9-77D13C13906C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-11855m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D07040D2-2ADC-4CC4-860F-74A7C64FD6FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-11865mld:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D2ED18E-241E-4154-9793-FB0E60F9C00F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-11865mre:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D59D80E8-5A2C-402F-8AE3-766ECEDA14F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-11955m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F66D2E5-BD5B-406D-82A0-4E1E32EDC337\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1250:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"557E240A-6760-434E-9C3A-1E5E9129912D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1250p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B7565F3-5D41-4A1F-948B-1A55E3AD3EF8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1270:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C71A52C1-1FBF-4730-8234-700F87D5E74D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1270p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B930DF9-C425-41AF-9736-0BD611C79CA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1290:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DF260A0-CDD8-4EE1-B3F4-73CD02FDCD11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1290e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B84F7DC-EE67-4748-8AE2-7070A6F79BAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1290p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C156433-48A3-4B2E-A8DB-AF1F09B2EFA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1290t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D78A1CFF-F05E-429C-A9AA-935078574A3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1290te:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE28AD41-2287-4F2B-924C-30B66A320443\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1300:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE3A7AD3-D7D4-40A5-B1B6-A818B5ACE6D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1350:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E31FFECA-F663-4B59-9800-1C6A8BD84626\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1350p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3F194D4-9425-470E-B812-CD92B5C5A68A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1370:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E426811-F97D-42CE-B06D-41CDA84E1B55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1370p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F5F5950-C21F-4142-BA1E-E074FAF249F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1390:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2BC8A89-4CF3-473B-9251-9FA5FF8ADBD6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1390p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30EE6B10-84FC-4D9D-8F39-4B7000CC85AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-1390t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AFDA5D5-F00F-40CC-B492-C433200A491C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-2223:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"708D6E00-A2E5-4B08-88E7-C872ACFC341D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-2225:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CD8EE0E-2BA3-49DD-91D1-81AB67F16475\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-2235:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC75E5CF-4241-45A8-AD45-1F7F077CEEA1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-2245:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D132291B-AADD-49E3-ADD6-333E1F1D8DFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-2255:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2ADF328B-D286-4C36-9F21-11A58D55D03A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-2265:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6D23470-A702-426D-A63C-4F7BAC158762\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-2275:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"750A77C5-1367-4E04-9ABF-1AB2D46C29C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-2295:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1340A29-3428-4FAD-AA07-7F625915E34D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-3223:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ADA1FA19-A836-4D6A-8C2D-718ECE6866D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-3225:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3ECEBDB0-2E0A-416B-9737-82C1FC65A06C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-3235:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C39B6A99-7060-4011-8FA3-E5ABE5C02813\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-3245:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF9E723E-1095-424E-A90D-380CA0D2795E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-3245m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35380FB9-90FF-405F-8E2E-01C1DD209540\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-3265:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2215D655-0EA9-4530-AB68-7B1C7360D692\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-3265m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"020B6FED-EAE2-478C-8FF4-CB75F24E9A9D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-3275:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AE519C62-F5BB-461C-91EF-2979CD506C63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:intel:xeon_w-3275m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F693457C-3529-4E62-A672-1B862F235D0F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6EDB6772-7FDB-45FF-8D72-952902A7EE56\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9955F62A-75D3-4347-9AD3-5947FC365838\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A6D77C7-A2F4-4700-AB5A-3EC853496ECA\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2022/03/18/2\",\"source\":\"secure@intel.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220818-0004/\",\"source\":\"secure@intel.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html\",\"source\":\"secure@intel.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/155143\",\"source\":\"secure@intel.com\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"secure@intel.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2022/03/18/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220818-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/155143\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.vicarius.io/vsociety/posts/cve-2022-0001-detect-specter-vulnerability?prevUrl=wizard\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.vicarius.io/vsociety/posts/cve-2022-0001-mitigate-specter-vulnerability?prevUrl=wizard\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.vicarius.io/vsociety/posts/cve-2022-0001-detect-specter-vulnerability?prevUrl=wizard\"}, {\"url\": \"https://www.vicarius.io/vsociety/posts/cve-2022-0001-mitigate-specter-vulnerability?prevUrl=wizard\"}, {\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2022/03/18/2\", \"name\": \"[oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2022.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20220818-0004/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.kb.cert.org/vuls/id/155143\", \"name\": \"VU#155143\", \"tags\": [\"third-party-advisory\", \"x_transferred\"]}], \"x_generator\": {\"engine\": \"ADPogram 0.0.1\"}, \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-04-01T16:11:32.250Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-0001\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-23T13:21:07.709784Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"description\": \"CWE-noinfo Not enough information\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-05T13:13:11.506Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"Intel(R) Processors\", \"versions\": [{\"status\": \"affected\", \"version\": \"See references\"}]}], \"references\": [{\"url\": \"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2022/03/18/2\", \"name\": \"[oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2022.html\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20220818-0004/\"}, {\"url\": \"https://www.kb.cert.org/vuls/id/155143\", \"name\": \"VU#155143\", \"tags\": [\"third-party-advisory\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \" information disclosure \"}]}], \"providerMetadata\": {\"orgId\": \"6dda929c-bb53-4a77-a76d-48e79601a1ce\", \"shortName\": \"intel\", \"dateUpdated\": \"2024-04-09T15:05:59.454Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2022-0001\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-05-05T16:44:34.239Z\", \"dateReserved\": \"2021-10-15T00:00:00.000Z\", \"assignerOrgId\": \"6dda929c-bb53-4a77-a76d-48e79601a1ce\", \"datePublished\": \"2022-03-11T00:00:00.000Z\", \"assignerShortName\": \"intel\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2024-AVI-0289
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Microsoft Windows. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes x64 versions antérieures à 10.0.19044.4291 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes 32 bits versions antérieures à 10.0.17763.5696 | ||
| Microsoft | Windows | Windows Server 2022, 23H2 Edition (Server Core installation) versions antérieures à 10.0.25398.830 | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes 32 bits versions antérieures à 10.0.19044.4291 | ||
| Microsoft | Windows | Windows Server 2012 versions antérieures à 6.2.9200.24821 | ||
| Microsoft | Windows | Windows Server 2008 R2 pour systèmes x64 Service Pack 1 (Server Core installation) versions antérieures à 6.1.7601.27067 | ||
| Microsoft | Windows | Windows Server 2022 versions antérieures à 10.0.20348.2402 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes ARM64 versions antérieures à 10.0.17763.5696 | ||
| Microsoft | Windows | Outlook pour Windows versions antérieures à 1.2023.0322.0100 | ||
| Microsoft | Windows | Windows 11 Version 22H2 pour systèmes x64 versions antérieures à 10.0.22631.3447 | ||
| Microsoft | Windows | Windows Server 2008 R2 pour systèmes x64 Service Pack 1 versions antérieures à 6.1.7601.27067 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes x64 Service Pack 2 versions antérieures à 6.0.6003.22618 | ||
| Microsoft | Windows | Windows 10 Version 1607 pour systèmes x64 versions antérieures à 10.0.14393.6897 | ||
| Microsoft | Windows | Windows 10 Version 1607 pour systèmes 32 bits versions antérieures à 10.0.14393.6897 | ||
| Microsoft | Windows | Windows Server 2012 R2 (Server Core installation) versions antérieures à 6.3.9600.21924 | ||
| Microsoft | Windows | Microsoft ODBC Driver 18 pour SQL Server sur Windows versions antérieures à 18.3.3.1 | ||
| Microsoft | Windows | Windows 11 version 21H2 pour systèmes x64 versions antérieures à 10.0.22000.2899 | ||
| Microsoft | Windows | Windows Server 2016 (Server Core installation) versions antérieures à 10.0.14393.6897 | ||
| Microsoft | Windows | Windows 10 Version 22H2 pour systèmes x64 versions antérieures à 10.0.19045.4291 | ||
| Microsoft | Windows | Windows Server 2012 (Server Core installation) versions antérieures à 6.2.9200.24821 | ||
| Microsoft | Windows | Windows 11 version 21H2 pour systèmes ARM64 versions antérieures à 10.0.22000.2899 | ||
| Microsoft | Windows | Windows Server 2016 versions antérieures à 10.0.14393.6897 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes 32 bits Service Pack 2 (Server Core installation) versions antérieures à 6.0.6003.22618 | ||
| Microsoft | Windows | Windows 11 Version 23H2 pour systèmes ARM64 versions antérieures à 10.0.22631.3447 | ||
| Microsoft | Windows | Windows 11 Version 22H2 pour systèmes ARM64 versions antérieures à 10.0.22631.3447 | ||
| Microsoft | Windows | Windows Server 2022 (Server Core installation) versions antérieures à 10.0.20348.2402 | ||
| Microsoft | Windows | Windows 10 Version 22H2 pour systèmes ARM64 versions antérieures à 10.0.19045.4291 | ||
| Microsoft | Windows | Windows Server 2012 R2 versions antérieures à 6.3.9600.21924 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes 32 bits Service Pack 2 versions antérieures à 6.0.6003.22618 | ||
| Microsoft | Windows | Windows Server 2019 versions antérieures à 10.0.17763.5696 | ||
| Microsoft | Windows | Windows 10 Version 21H2 pour systèmes ARM64 versions antérieures à 10.0.19044.4291 | ||
| Microsoft | Windows | Windows 11 Version 23H2 pour systèmes x64 versions antérieures à 10.0.22631.3447 | ||
| Microsoft | Windows | Microsoft ODBC Driver 17 pour SQL Server sur Windows versions antérieures à 17.10.6.1 | ||
| Microsoft | Windows | Windows 10 pour systèmes x64 versions antérieures à 10.0.10240.20596 | ||
| Microsoft | Windows | Windows 10 pour systèmes 32 bits versions antérieures à 10.0.10240.20596 | ||
| Microsoft | Windows | Windows Server 2008 pour systèmes x64 Service Pack 2 (Server Core installation) versions antérieures à 6.0.6003.22618 | ||
| Microsoft | Windows | Windows 10 Version 22H2 pour systèmes 32 bits versions antérieures à 10.0.19045.4291 | ||
| Microsoft | Windows | Windows 10 Version 1809 pour systèmes x64 versions antérieures à 10.0.17763.5696 | ||
| Microsoft | Windows | Windows 11 Version 22H2 pour systèmes ARM64 versions antérieures à 10.0.22621.3435 | ||
| Microsoft | Windows | Windows 11 Version 22H2 pour systèmes x64 versions antérieures à 10.0.22621.3435 | ||
| Microsoft | Windows | Windows Server 2019 (Server Core installation) versions antérieures à 10.0.17763.5696 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.19044.4291",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.17763.5696",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022, 23H2 Edition (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.25398.830",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.19044.4291",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 versions ant\u00e9rieures \u00e0 6.2.9200.24821",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1 (Server Core installation) versions ant\u00e9rieures \u00e0 6.1.7601.27067",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022 versions ant\u00e9rieures \u00e0 10.0.20348.2402",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.17763.5696",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Outlook pour Windows versions ant\u00e9rieures \u00e0 1.2023.0322.0100",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.22631.3447",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Service Pack 1 versions ant\u00e9rieures \u00e0 6.1.7601.27067",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 versions ant\u00e9rieures \u00e0 6.0.6003.22618",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.14393.6897",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.14393.6897",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2 (Server Core installation) versions ant\u00e9rieures \u00e0 6.3.9600.21924",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft ODBC Driver 18 pour SQL Server sur Windows versions ant\u00e9rieures \u00e0 18.3.3.1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 version 21H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.22000.2899",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.14393.6897",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.19045.4291",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 (Server Core installation) versions ant\u00e9rieures \u00e0 6.2.9200.24821",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 version 21H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.22000.2899",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016 versions ant\u00e9rieures \u00e0 10.0.14393.6897",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2 (Server Core installation) versions ant\u00e9rieures \u00e0 6.0.6003.22618",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 23H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.22631.3447",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.22631.3447",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.20348.2402",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.19045.4291",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2 versions ant\u00e9rieures \u00e0 6.3.9600.21924",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes 32 bits Service Pack 2 versions ant\u00e9rieures \u00e0 6.0.6003.22618",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019 versions ant\u00e9rieures \u00e0 10.0.17763.5696",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.19044.4291",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 23H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.22631.3447",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft ODBC Driver 17 pour SQL Server sur Windows versions ant\u00e9rieures \u00e0 17.10.6.1",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.10240.20596",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.10240.20596",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 (Server Core installation) versions ant\u00e9rieures \u00e0 6.0.6003.22618",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.19045.4291",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.17763.5696",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.22621.3435",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 22H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.22621.3435",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.17763.5696",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2024-28902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28902"
},
{
"name": "CVE-2024-26232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26232"
},
{
"name": "CVE-2024-26214",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26214"
},
{
"name": "CVE-2024-28919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28919"
},
{
"name": "CVE-2024-26239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26239"
},
{
"name": "CVE-2024-26194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26194"
},
{
"name": "CVE-2024-26222",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26222"
},
{
"name": "CVE-2024-28933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28933"
},
{
"name": "CVE-2024-28941",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28941"
},
{
"name": "CVE-2024-28925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28925"
},
{
"name": "CVE-2024-26211",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26211"
},
{
"name": "CVE-2024-29066",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29066"
},
{
"name": "CVE-2024-20693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20693"
},
{
"name": "CVE-2024-26242",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26242"
},
{
"name": "CVE-2024-20688",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20688"
},
{
"name": "CVE-2024-26252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26252"
},
{
"name": "CVE-2024-28896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28896"
},
{
"name": "CVE-2024-26179",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26179"
},
{
"name": "CVE-2024-26227",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26227"
},
{
"name": "CVE-2024-28905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28905"
},
{
"name": "CVE-2024-20669",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20669"
},
{
"name": "CVE-2024-26223",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26223"
},
{
"name": "CVE-2024-28932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28932"
},
{
"name": "CVE-2024-26180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26180"
},
{
"name": "CVE-2024-28897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28897"
},
{
"name": "CVE-2024-26234",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26234"
},
{
"name": "CVE-2024-21447",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21447"
},
{
"name": "CVE-2024-29043",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29043"
},
{
"name": "CVE-2024-28935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28935"
},
{
"name": "CVE-2024-28930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28930"
},
{
"name": "CVE-2024-28921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28921"
},
{
"name": "CVE-2024-26253",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26253"
},
{
"name": "CVE-2024-28943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28943"
},
{
"name": "CVE-2024-29064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29064"
},
{
"name": "CVE-2024-28901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28901"
},
{
"name": "CVE-2024-26243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26243"
},
{
"name": "CVE-2024-29062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29062"
},
{
"name": "CVE-2024-26195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26195"
},
{
"name": "CVE-2024-26231",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26231"
},
{
"name": "CVE-2024-26213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26213"
},
{
"name": "CVE-2024-26219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26219"
},
{
"name": "CVE-2024-26168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26168"
},
{
"name": "CVE-2024-28934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28934"
},
{
"name": "CVE-2024-26175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26175"
},
{
"name": "CVE-2024-26207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26207"
},
{
"name": "CVE-2024-26210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26210"
},
{
"name": "CVE-2024-28936",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28936"
},
{
"name": "CVE-2024-26171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26171"
},
{
"name": "CVE-2024-26255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26255"
},
{
"name": "CVE-2024-26189",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26189"
},
{
"name": "CVE-2024-28924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28924"
},
{
"name": "CVE-2024-28907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28907"
},
{
"name": "CVE-2024-23594",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23594"
},
{
"name": "CVE-2024-26215",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26215"
},
{
"name": "CVE-2024-23593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23593"
},
{
"name": "CVE-2024-26202",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26202"
},
{
"name": "CVE-2024-28938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28938"
},
{
"name": "CVE-2024-28904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28904"
},
{
"name": "CVE-2024-26230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26230"
},
{
"name": "CVE-2024-26235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26235"
},
{
"name": "CVE-2024-28929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28929"
},
{
"name": "CVE-2024-20670",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20670"
},
{
"name": "CVE-2024-28898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28898"
},
{
"name": "CVE-2024-28920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28920"
},
{
"name": "CVE-2024-26221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26221"
},
{
"name": "CVE-2024-26226",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26226"
},
{
"name": "CVE-2024-28931",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28931"
},
{
"name": "CVE-2022-0001",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0001"
},
{
"name": "CVE-2024-29056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29056"
},
{
"name": "CVE-2024-28900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28900"
},
{
"name": "CVE-2024-29052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29052"
},
{
"name": "CVE-2024-29988",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29988"
},
{
"name": "CVE-2024-26233",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26233"
},
{
"name": "CVE-2024-26229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26229"
},
{
"name": "CVE-2024-26248",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26248"
},
{
"name": "CVE-2024-26158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26158"
},
{
"name": "CVE-2024-26250",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26250"
},
{
"name": "CVE-2024-26241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26241"
},
{
"name": "CVE-2024-28923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28923"
},
{
"name": "CVE-2024-26228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26228"
},
{
"name": "CVE-2024-26236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26236"
},
{
"name": "CVE-2024-26245",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26245"
},
{
"name": "CVE-2024-28937",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28937"
},
{
"name": "CVE-2024-26200",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26200"
},
{
"name": "CVE-2024-26217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26217"
},
{
"name": "CVE-2024-26256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26256"
},
{
"name": "CVE-2024-26209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26209"
},
{
"name": "CVE-2024-29061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29061"
},
{
"name": "CVE-2024-28922",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28922"
},
{
"name": "CVE-2024-26224",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26224"
},
{
"name": "CVE-2024-26218",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26218"
},
{
"name": "CVE-2024-26216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26216"
},
{
"name": "CVE-2024-20665",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20665"
},
{
"name": "CVE-2024-20678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20678"
},
{
"name": "CVE-2024-26172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26172"
},
{
"name": "CVE-2024-26237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26237"
},
{
"name": "CVE-2024-26208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26208"
},
{
"name": "CVE-2024-26183",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26183"
},
{
"name": "CVE-2024-29050",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29050"
},
{
"name": "CVE-2024-26240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26240"
},
{
"name": "CVE-2024-20689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20689"
},
{
"name": "CVE-2024-26244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26244"
},
{
"name": "CVE-2024-26212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26212"
},
{
"name": "CVE-2024-28903",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28903"
},
{
"name": "CVE-2024-26205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26205"
},
{
"name": "CVE-2024-26254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26254"
},
{
"name": "CVE-2024-26220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26220"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26232 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26232"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-29043 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29043"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28932 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28932"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28925 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28925"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26210 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26210"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-29062 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29062"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26236 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26236"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26237 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26237"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26180 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26180"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28922 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28922"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-29061 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29061"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28931 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28931"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21447 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21447"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26253 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26253"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26183 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26183"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26255 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26255"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28923 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28923"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26229 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26229"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26221 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26221"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-0001 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-0001"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26227 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26227"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-29988 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29988"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26205 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26205"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20689 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20689"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28938 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28938"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26224 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26224"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26158 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26158"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26175 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26175"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26244 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26244"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-29050 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29050"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28897 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28897"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26220 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26220"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28937 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28937"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26240 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26240"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26217 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26217"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26242 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26242"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26218 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26218"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28921 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28921"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28907 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28907"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28902 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28902"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28903 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28903"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28920 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28920"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28943 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28943"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26171 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26171"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28941 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28941"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28905 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28905"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26213 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26213"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28934 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28934"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20665 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20665"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26216 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26216"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26231 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26231"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28900 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28900"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26228 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26228"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28935 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28935"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26215 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26215"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-23593 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-23593"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26214 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26214"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26248 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26248"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26254 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26254"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26226 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26226"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28930 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28930"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20693 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20693"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26208 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26208"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-29056 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29056"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-29066 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29066"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28896 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28896"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-23594 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-23594"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20678 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20678"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26207 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26207"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28919 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28919"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28904 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28904"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26252 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26252"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26241 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26241"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-29052 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29052"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20669 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20669"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26172 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26172"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26194 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26194"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20688 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20688"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28898 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28898"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26200 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26200"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26239 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26239"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26189 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26189"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26219 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26219"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-29064 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29064"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26256 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26256"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26202 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26202"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26243 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26243"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26195 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26195"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28924 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28924"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28936 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28936"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28901 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28901"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26233 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26233"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26179 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26179"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26222 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26222"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20670 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20670"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28929 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28929"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-28933 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28933"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26250 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26250"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26230 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26230"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26168 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26168"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26211 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26211"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26209 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26209"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26234 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26234"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26212 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26212"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26223 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26223"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26235 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26235"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26245 du 09 avril 2024",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26245"
}
],
"reference": "CERTFR-2024-AVI-0289",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-04-10T00:00:00.000000"
}
],
"risks": [
{
"description": "Usurpation d\u0027identit\u00e9"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eMicrosoft Windows\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une\n\u00e9l\u00e9vation de privil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Windows",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows du 09 avril 2024",
"url": null
}
]
}
FKIE_CVE-2022-0001
Vulnerability from fkie_nvd - Published: 2022-03-11 18:15 - Updated: 2025-05-05 17:17
Severity
6.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Summary
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
References
| URL | Tags | ||
|---|---|---|---|
| secure@intel.com | http://www.openwall.com/lists/oss-security/2022/03/18/2 | Mailing List, Third Party Advisory | |
| secure@intel.com | https://security.netapp.com/advisory/ntap-20220818-0004/ | Third Party Advisory | |
| secure@intel.com | https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html | Vendor Advisory | |
| secure@intel.com | https://www.kb.cert.org/vuls/id/155143 | ||
| secure@intel.com | https://www.oracle.com/security-alerts/cpujul2022.html | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2022/03/18/2 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20220818-0004/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.kb.cert.org/vuls/id/155143 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.oracle.com/security-alerts/cpujul2022.html | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.vicarius.io/vsociety/posts/cve-2022-0001-detect-specter-vulnerability?prevUrl=wizard | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.vicarius.io/vsociety/posts/cve-2022-0001-mitigate-specter-vulnerability?prevUrl=wizard |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| intel | atom_p5921b | - | |
| intel | atom_p5931b | - | |
| intel | atom_p5942b | - | |
| intel | atom_p5962b | - | |
| intel | atom_x6200fe | - | |
| intel | atom_x6211e | - | |
| intel | atom_x6212re | - | |
| intel | atom_x6413e | - | |
| intel | atom_x6425e | - | |
| intel | atom_x6425re | - | |
| intel | atom_x6427fe | - | |
| intel | celeron_5305u | - | |
| intel | celeron_6305 | - | |
| intel | celeron_6305e | - | |
| intel | celeron_6600he | - | |
| intel | celeron_g5205u | - | |
| intel | celeron_g5305u | - | |
| intel | celeron_g5900 | - | |
| intel | celeron_g5900t | - | |
| intel | celeron_g5905 | - | |
| intel | celeron_g5905t | - | |
| intel | celeron_g5920 | - | |
| intel | celeron_g5925 | - | |
| intel | celeron_g6900 | - | |
| intel | celeron_g6900t | - | |
| intel | celeron_j4005 | - | |
| intel | celeron_j4025 | - | |
| intel | celeron_j4105 | - | |
| intel | celeron_j4125 | - | |
| intel | celeron_j6413 | - | |
| intel | celeron_n4000 | - | |
| intel | celeron_n4020 | - | |
| intel | celeron_n4100 | - | |
| intel | celeron_n4120 | - | |
| intel | celeron_n4500 | - | |
| intel | celeron_n4504 | - | |
| intel | celeron_n5100 | - | |
| intel | celeron_n5105 | - | |
| intel | celeron_n6211 | - | |
| intel | core_i3-1000g1 | - | |
| intel | core_i3-1000g4 | - | |
| intel | core_i3-1005g1 | - | |
| intel | core_i3-10100 | - | |
| intel | core_i3-10100f | - | |
| intel | core_i3-10100t | - | |
| intel | core_i3-10100te | - | |
| intel | core_i3-10105 | - | |
| intel | core_i3-10105f | - | |
| intel | core_i3-10105t | - | |
| intel | core_i3-10110u | - | |
| intel | core_i3-10300 | - | |
| intel | core_i3-10300t | - | |
| intel | core_i3-10305 | - | |
| intel | core_i3-10305t | - | |
| intel | core_i3-10320 | - | |
| intel | core_i3-10325 | - | |
| intel | core_i3-11100he | - | |
| intel | core_i3-1110g4 | - | |
| intel | core_i3-1115g4 | - | |
| intel | core_i3-1115g4e | - | |
| intel | core_i3-1115gre | - | |
| intel | core_i3-1120g4 | - | |
| intel | core_i3-1125g4 | - | |
| intel | core_i3-12100 | - | |
| intel | core_i3-12100f | - | |
| intel | core_i3-12100t | - | |
| intel | core_i3-1220p | - | |
| intel | core_i3-12300 | - | |
| intel | core_i3-12300t | - | |
| intel | core_i3-l13g4 | - | |
| intel | core_i5-10110y | - | |
| intel | core_i5-10200h | - | |
| intel | core_i5-10210u | - | |
| intel | core_i5-10210y | - | |
| intel | core_i5-10300h | - | |
| intel | core_i5-1030g4 | - | |
| intel | core_i5-1030g7 | - | |
| intel | core_i5-10310y | - | |
| intel | core_i5-1035g1 | - | |
| intel | core_i5-1035g4 | - | |
| intel | core_i5-1035g7 | - | |
| intel | core_i5-10400 | - | |
| intel | core_i5-10400f | - | |
| intel | core_i5-10400h | - | |
| intel | core_i5-10400t | - | |
| intel | core_i5-10500 | - | |
| intel | core_i5-10500t | - | |
| intel | core_i5-10500te | - | |
| intel | core_i5-10505 | - | |
| intel | core_i5-10600 | - | |
| intel | core_i5-10600k | - | |
| intel | core_i5-10600kf | - | |
| intel | core_i5-10600t | - | |
| intel | core_i5-11260h | - | |
| intel | core_i5-11300h | - | |
| intel | core_i5-1130g7 | - | |
| intel | core_i5-11320h | - | |
| intel | core_i5-1135g7 | - | |
| intel | core_i5-11400 | - | |
| intel | core_i5-11400f | - | |
| intel | core_i5-11400h | - | |
| intel | core_i5-11400t | - | |
| intel | core_i5-1140g7 | - | |
| intel | core_i5-1145g7 | - | |
| intel | core_i5-1145g7e | - | |
| intel | core_i5-1145gre | - | |
| intel | core_i5-11500 | - | |
| intel | core_i5-11500h | - | |
| intel | core_i5-11500t | - | |
| intel | core_i5-1155g7 | - | |
| intel | core_i5-11600 | - | |
| intel | core_i5-11600k | - | |
| intel | core_i5-11600kf | - | |
| intel | core_i5-11600t | - | |
| intel | core_i5-12400 | - | |
| intel | core_i5-12400f | - | |
| intel | core_i5-12400t | - | |
| intel | core_i5-1240p | - | |
| intel | core_i5-12450h | - | |
| intel | core_i5-12500 | - | |
| intel | core_i5-12500h | - | |
| intel | core_i5-12500t | - | |
| intel | core_i5-1250p | - | |
| intel | core_i5-12600 | - | |
| intel | core_i5-12600h | - | |
| intel | core_i5-12600k | - | |
| intel | core_i5-12600kf | - | |
| intel | core_i5-12600t | - | |
| intel | core_i5-8200y | - | |
| intel | core_i5-8210y | - | |
| intel | core_i5-8265u | - | |
| intel | core_i5-8310y | - | |
| intel | core_i5-8365u | - | |
| intel | core_i5-9300h | - | |
| intel | core_i5-9400 | - | |
| intel | core_i5-9400f | - | |
| intel | core_i5-9400h | - | |
| intel | core_i5-9600k | - | |
| intel | core_i5-9600kf | - | |
| intel | core_i5-l16g7 | - | |
| intel | core_i7-10510u | - | |
| intel | core_i7-10510y | - | |
| intel | core_i7-1060g7 | - | |
| intel | core_i7-10610u | - | |
| intel | core_i7-1065g7 | - | |
| intel | core_i7-10700 | - | |
| intel | core_i7-10700e | - | |
| intel | core_i7-10700f | - | |
| intel | core_i7-10700k | - | |
| intel | core_i7-10700kf | - | |
| intel | core_i7-10700t | - | |
| intel | core_i7-10700te | - | |
| intel | core_i7-10710u | - | |
| intel | core_i7-10750h | - | |
| intel | core_i7-10810u | - | |
| intel | core_i7-10850h | - | |
| intel | core_i7-10870h | - | |
| intel | core_i7-10875h | - | |
| intel | core_i7-11370h | - | |
| intel | core_i7-11375h | - | |
| intel | core_i7-11390h | - | |
| intel | core_i7-1160g7 | - | |
| intel | core_i7-1165g7 | - | |
| intel | core_i7-11700 | - | |
| intel | core_i7-11700f | - | |
| intel | core_i7-11700k | - | |
| intel | core_i7-11700kf | - | |
| intel | core_i7-11700t | - | |
| intel | core_i7-11800h | - | |
| intel | core_i7-1180g7 | - | |
| intel | core_i7-11850h | - | |
| intel | core_i7-11850he | - | |
| intel | core_i7-1185g7 | - | |
| intel | core_i7-1185g7e | - | |
| intel | core_i7-1185gre | - | |
| intel | core_i7-1195g7 | - | |
| intel | core_i7-1260p | - | |
| intel | core_i7-12650h | - | |
| intel | core_i7-12700 | - | |
| intel | core_i7-12700f | - | |
| intel | core_i7-12700h | - | |
| intel | core_i7-12700k | - | |
| intel | core_i7-12700kf | - | |
| intel | core_i7-12700t | - | |
| intel | core_i7-1270p | - | |
| intel | core_i7-12800h | - | |
| intel | core_i7-1280p | - | |
| intel | core_i7-7640x | - | |
| intel | core_i7-7740x | - | |
| intel | core_i7-7800x | - | |
| intel | core_i7-7820x | - | |
| intel | core_i7-8500y | - | |
| intel | core_i7-8565u | - | |
| intel | core_i7-8665u | - | |
| intel | core_i7-9700k | - | |
| intel | core_i7-9700kf | - | |
| intel | core_i7-9750hf | - | |
| intel | core_i7-9850h | - | |
| intel | core_i9-10850h | - | |
| intel | core_i9-10850k | - | |
| intel | core_i9-10885h | - | |
| intel | core_i9-10900 | - | |
| intel | core_i9-10900e | - | |
| intel | core_i9-10900f | - | |
| intel | core_i9-10900k | - | |
| intel | core_i9-10900kf | - | |
| intel | core_i9-10900t | - | |
| intel | core_i9-10900te | - | |
| intel | core_i9-10900x | - | |
| intel | core_i9-10920x | - | |
| intel | core_i9-10940x | - | |
| intel | core_i9-10980hk | - | |
| intel | core_i9-11900 | - | |
| intel | core_i9-11900f | - | |
| intel | core_i9-11900h | - | |
| intel | core_i9-11900k | - | |
| intel | core_i9-11900kf | - | |
| intel | core_i9-11900t | - | |
| intel | core_i9-11950h | - | |
| intel | core_i9-11980hk | - | |
| intel | core_i9-12900 | - | |
| intel | core_i9-12900f | - | |
| intel | core_i9-12900h | - | |
| intel | core_i9-12900hk | - | |
| intel | core_i9-12900k | - | |
| intel | core_i9-12900kf | - | |
| intel | core_i9-12900t | - | |
| intel | core_i9-7900x | - | |
| intel | core_i9-7920x | - | |
| intel | core_i9-7940x | - | |
| intel | core_i9-7960x | - | |
| intel | core_i9-9800x | - | |
| intel | core_i9-9820x | - | |
| intel | core_i9-9880h | - | |
| intel | core_i9-9900k | - | |
| intel | core_i9-9900kf | - | |
| intel | core_i9-9900x | - | |
| intel | core_i9-9920x | - | |
| intel | core_i9-9940x | - | |
| intel | core_i9-9960x | - | |
| intel | core_i9-9980hk | - | |
| intel | core_m3-8100y | - | |
| intel | pentium_gold_7505 | - | |
| intel | pentium_gold_g6400 | - | |
| intel | pentium_gold_g6400t | - | |
| intel | pentium_gold_g6405 | - | |
| intel | pentium_gold_g6405t | - | |
| intel | pentium_gold_g6405u | - | |
| intel | pentium_gold_g6500 | - | |
| intel | pentium_gold_g6500t | - | |
| intel | pentium_gold_g6505 | - | |
| intel | pentium_gold_g6505t | - | |
| intel | pentium_gold_g6600 | - | |
| intel | pentium_gold_g6605 | - | |
| intel | pentium_gold_g7400 | - | |
| intel | pentium_gold_g7400t | - | |
| intel | pentium_j6425 | - | |
| intel | pentium_n6415 | - | |
| intel | pentium_silver_j5005 | - | |
| intel | pentium_silver_j5040 | - | |
| intel | pentium_silver_n5000 | - | |
| intel | pentium_silver_n5030 | - | |
| intel | pentium_silver_n6000 | - | |
| intel | pentium_silver_n6005 | - | |
| intel | xeon_bronze_3204 | - | |
| intel | xeon_bronze_3206r | - | |
| intel | xeon_d1700 | - | |
| intel | xeon_d2700 | - | |
| intel | xeon_e-2278g | - | |
| intel | xeon_e-2278ge | - | |
| intel | xeon_e-2278gel | - | |
| intel | xeon_e-2286m | - | |
| intel | xeon_e-2288g | - | |
| intel | xeon_e-2314 | - | |
| intel | xeon_e-2324g | - | |
| intel | xeon_e-2334 | - | |
| intel | xeon_e-2336 | - | |
| intel | xeon_e-2356g | - | |
| intel | xeon_e-2374g | - | |
| intel | xeon_e-2378 | - | |
| intel | xeon_e-2378g | - | |
| intel | xeon_e-2386g | - | |
| intel | xeon_e-2388g | - | |
| intel | xeon_gold_5215 | - | |
| intel | xeon_gold_5215l | - | |
| intel | xeon_gold_5217 | - | |
| intel | xeon_gold_5218 | - | |
| intel | xeon_gold_5218b | - | |
| intel | xeon_gold_5218n | - | |
| intel | xeon_gold_5218r | - | |
| intel | xeon_gold_5218t | - | |
| intel | xeon_gold_5220 | - | |
| intel | xeon_gold_5220r | - | |
| intel | xeon_gold_5220s | - | |
| intel | xeon_gold_5220t | - | |
| intel | xeon_gold_5222 | - | |
| intel | xeon_gold_5315y | - | |
| intel | xeon_gold_5317 | - | |
| intel | xeon_gold_5318h | - | |
| intel | xeon_gold_5318n | - | |
| intel | xeon_gold_5318s | - | |
| intel | xeon_gold_5318y | - | |
| intel | xeon_gold_5320 | - | |
| intel | xeon_gold_5320h | - | |
| intel | xeon_gold_5320t | - | |
| intel | xeon_gold_6208u | - | |
| intel | xeon_gold_6209u | - | |
| intel | xeon_gold_6210u | - | |
| intel | xeon_gold_6212u | - | |
| intel | xeon_gold_6222v | - | |
| intel | xeon_gold_6226 | - | |
| intel | xeon_gold_6226r | - | |
| intel | xeon_gold_6230 | - | |
| intel | xeon_gold_6230n | - | |
| intel | xeon_gold_6230r | - | |
| intel | xeon_gold_6230t | - | |
| intel | xeon_gold_6234 | - | |
| intel | xeon_gold_6238 | - | |
| intel | xeon_gold_6238l | - | |
| intel | xeon_gold_6238r | - | |
| intel | xeon_gold_6238t | - | |
| intel | xeon_gold_6240 | - | |
| intel | xeon_gold_6240l | - | |
| intel | xeon_gold_6240r | - | |
| intel | xeon_gold_6240y | - | |
| intel | xeon_gold_6242 | - | |
| intel | xeon_gold_6242r | - | |
| intel | xeon_gold_6244 | - | |
| intel | xeon_gold_6246 | - | |
| intel | xeon_gold_6246r | - | |
| intel | xeon_gold_6248 | - | |
| intel | xeon_gold_6248r | - | |
| intel | xeon_gold_6250 | - | |
| intel | xeon_gold_6250l | - | |
| intel | xeon_gold_6252 | - | |
| intel | xeon_gold_6252n | - | |
| intel | xeon_gold_6254 | - | |
| intel | xeon_gold_6256 | - | |
| intel | xeon_gold_6258r | - | |
| intel | xeon_gold_6262v | - | |
| intel | xeon_gold_6312u | - | |
| intel | xeon_gold_6314u | - | |
| intel | xeon_gold_6326 | - | |
| intel | xeon_gold_6328h | - | |
| intel | xeon_gold_6328hl | - | |
| intel | xeon_gold_6330 | - | |
| intel | xeon_gold_6330h | - | |
| intel | xeon_gold_6330n | - | |
| intel | xeon_gold_6334 | - | |
| intel | xeon_gold_6336y | - | |
| intel | xeon_gold_6338 | - | |
| intel | xeon_gold_6338n | - | |
| intel | xeon_gold_6338t | - | |
| intel | xeon_gold_6342 | - | |
| intel | xeon_gold_6346 | - | |
| intel | xeon_gold_6348 | - | |
| intel | xeon_gold_6348h | - | |
| intel | xeon_gold_6354 | - | |
| intel | xeon_platinum_8253 | - | |
| intel | xeon_platinum_8256 | - | |
| intel | xeon_platinum_8260 | - | |
| intel | xeon_platinum_8260l | - | |
| intel | xeon_platinum_8260y | - | |
| intel | xeon_platinum_8268 | - | |
| intel | xeon_platinum_8270 | - | |
| intel | xeon_platinum_8276 | - | |
| intel | xeon_platinum_8276l | - | |
| intel | xeon_platinum_8280 | - | |
| intel | xeon_platinum_8280l | - | |
| intel | xeon_platinum_8351n | - | |
| intel | xeon_platinum_8352m | - | |
| intel | xeon_platinum_8352s | - | |
| intel | xeon_platinum_8352v | - | |
| intel | xeon_platinum_8352y | - | |
| intel | xeon_platinum_8353h | - | |
| intel | xeon_platinum_8354h | - | |
| intel | xeon_platinum_8356h | - | |
| intel | xeon_platinum_8358 | - | |
| intel | xeon_platinum_8358p | - | |
| intel | xeon_platinum_8360h | - | |
| intel | xeon_platinum_8360hl | - | |
| intel | xeon_platinum_8360y | - | |
| intel | xeon_platinum_8362 | - | |
| intel | xeon_platinum_8368 | - | |
| intel | xeon_platinum_8368q | - | |
| intel | xeon_platinum_8376h | - | |
| intel | xeon_platinum_8376hl | - | |
| intel | xeon_platinum_8380 | - | |
| intel | xeon_platinum_8380h | - | |
| intel | xeon_platinum_8380hl | - | |
| intel | xeon_platinum_9221 | - | |
| intel | xeon_platinum_9222 | - | |
| intel | xeon_platinum_9242 | - | |
| intel | xeon_platinum_9282 | - | |
| intel | xeon_silver_4208 | - | |
| intel | xeon_silver_4209t | - | |
| intel | xeon_silver_4210 | - | |
| intel | xeon_silver_4210r | - | |
| intel | xeon_silver_4210t | - | |
| intel | xeon_silver_4214 | - | |
| intel | xeon_silver_4214r | - | |
| intel | xeon_silver_4214y | - | |
| intel | xeon_silver_4215 | - | |
| intel | xeon_silver_4215r | - | |
| intel | xeon_silver_4216 | - | |
| intel | xeon_silver_4309y | - | |
| intel | xeon_silver_4310 | - | |
| intel | xeon_silver_4310t | - | |
| intel | xeon_silver_4314 | - | |
| intel | xeon_silver_4316 | - | |
| intel | xeon_w-10855 | - | |
| intel | xeon_w-10855m | - | |
| intel | xeon_w-10885m | - | |
| intel | xeon_w-11155mle | - | |
| intel | xeon_w-11155mre | - | |
| intel | xeon_w-11555mle | - | |
| intel | xeon_w-11555mre | - | |
| intel | xeon_w-11855m | - | |
| intel | xeon_w-11865mld | - | |
| intel | xeon_w-11865mre | - | |
| intel | xeon_w-11955m | - | |
| intel | xeon_w-1250 | - | |
| intel | xeon_w-1250p | - | |
| intel | xeon_w-1270 | - | |
| intel | xeon_w-1270p | - | |
| intel | xeon_w-1290 | - | |
| intel | xeon_w-1290e | - | |
| intel | xeon_w-1290p | - | |
| intel | xeon_w-1290t | - | |
| intel | xeon_w-1290te | - | |
| intel | xeon_w-1300 | - | |
| intel | xeon_w-1350 | - | |
| intel | xeon_w-1350p | - | |
| intel | xeon_w-1370 | - | |
| intel | xeon_w-1370p | - | |
| intel | xeon_w-1390 | - | |
| intel | xeon_w-1390p | - | |
| intel | xeon_w-1390t | - | |
| intel | xeon_w-2223 | - | |
| intel | xeon_w-2225 | - | |
| intel | xeon_w-2235 | - | |
| intel | xeon_w-2245 | - | |
| intel | xeon_w-2255 | - | |
| intel | xeon_w-2265 | - | |
| intel | xeon_w-2275 | - | |
| intel | xeon_w-2295 | - | |
| intel | xeon_w-3223 | - | |
| intel | xeon_w-3225 | - | |
| intel | xeon_w-3235 | - | |
| intel | xeon_w-3245 | - | |
| intel | xeon_w-3245m | - | |
| intel | xeon_w-3265 | - | |
| intel | xeon_w-3265m | - | |
| intel | xeon_w-3275 | - | |
| intel | xeon_w-3275m | - | |
| oracle | communications_cloud_native_core_binding_support_function | 22.1.3 | |
| oracle | communications_cloud_native_core_network_exposure_function | 22.1.1 | |
| oracle | communications_cloud_native_core_policy | 22.2.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:atom_p5921b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E6D6CEE1-25DF-43C5-AEBB-49585B64236A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_p5931b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31E2104F-0CE3-4B9D-88B3-35D982C36562",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_p5942b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9D860FEC-BA79-4FEE-A79C-88AA857358E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_p5962b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C2CEF8A6-2445-4B63-822D-81F6AC708D62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6200fe:-:*:*:*:*:*:*:*",
"matchCriteriaId": "89231773-9D9B-434A-A6A3-8527C4F6FEBB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6211e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A85EA674-2537-4323-AEDA-FA356489E7DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6212re:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F85599DD-3F80-4EB0-9753-D24EDD8D76CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6413e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1B3348F4-8E2B-42BE-9F3A-48DFF5CE0047",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6425e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7F068F4F-8CCD-4218-871C-BEABEB0DAB55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6425re:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7313975C-41A5-4657-8758-1C16F947BE4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6427fe:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2FBE4406-9979-4723-833C-176F051E6389",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_5305u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "39831D4E-743A-4C09-900F-24DDAB5D1B22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_6305:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D63F16DE-E30E-4268-B079-E07FD28355BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_6305e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "936DAD12-11D6-4AAF-B48D-5076C94BF30C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_6600he:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F11BB81D-8243-4B19-835C-6E0B4341894A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5205u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8BFB5A51-399C-4AC5-BA09-E74C5AD520EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5305u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F42D5DAA-8279-4A4F-A843-EBA0814952BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "545649F6-46CA-40CB-8A00-5DD40F6A83B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D42AC70C-B114-4795-8769-D9AF12298456",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5905:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6DEF520D-9427-4C5A-81F0-FCED5E2A8B99",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5905t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4B773674-1DB0-41D8-A758-2AF49F4722D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5920:-:*:*:*:*:*:*:*",
"matchCriteriaId": "153ABD9D-2C72-40C6-8DF9-3EB7D1D35B09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5925:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4036274A-CC6F-48B2-BF2E-DF51C4148B93",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g6900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABAF1125-B4F7-4BC9-B9DA-CA9125D4BC65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g6900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4AA8490E-45D6-4B6E-AF98-B75385574D6D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j4005:-:*:*:*:*:*:*:*",
"matchCriteriaId": "652EC574-B9B6-4747-AE72-39D1379A596B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j4025:-:*:*:*:*:*:*:*",
"matchCriteriaId": "522A9A57-B8D8-4C61-92E3-BE894A765C12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j4105:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A588BEB3-90B5-482E-B6C4-DC6529B0B4C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j4125:-:*:*:*:*:*:*:*",
"matchCriteriaId": "826BAF04-E174-483D-8700-7FA1EAC4D555",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j6413:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F7A8BF58-1D33-484A-951C-808443912BE8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C8771AB4-2F51-494D-8C86-3524BB4219C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4020:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6D7E822D-994F-410D-B13C-939449FFC293",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AB5576F2-4914-427C-9518-ED7D16630CC5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4120:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3ABB7C52-863F-4291-A05B-422EE9615FAE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B54D15DF-53EA-4611-932A-EDB8279F582A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4504:-:*:*:*:*:*:*:*",
"matchCriteriaId": "06499DE1-DA07-4C39-BBAC-FC57F4E0D4C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n5100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "96D6F5D3-3559-47AD-8201-C9D34417DC09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n5105:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AA455AC5-8434-4B59-BE89-E82CDACD2AEC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n6211:-:*:*:*:*:*:*:*",
"matchCriteriaId": "406E9139-BCFF-406B-A856-57896D27B752",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1000g1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6DAA00D4-A8AA-44AA-9609-0A40BD4FB2E0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1000g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF64D95C-653A-4864-A572-CD0A64B6CDF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1005g1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "30B2F570-1DD9-49C7-BB72-0EA0E9A417C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1DA9CBE9-CF87-495B-8D80-5DDDCD2044B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10100f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "614B1B4E-E1D7-417F-86D1-92F75D597E36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10100t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4BD11E86-B786-43C8-9B67-8F680CC30451",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10100te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3D740D69-83B6-4DBF-8617-9B1E96DFF4FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10105:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8BB09ACB-EFFF-4C2F-BEB5-AE1EEDC1EC2E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10105f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A8B15567-BFEA-43BE-9817-98A1F5548541",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10105t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "984C7C7A-2F8E-4918-8526-64A080943E0E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10110u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "44BF0AFB-E9DC-4EA5-BFFF-48F896C655E0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C7AFC285-2248-45E7-9009-1402628F17E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10300t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "078DAE1F-8581-44FB-83EA-575685928C4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10305:-:*:*:*:*:*:*:*",
"matchCriteriaId": "887BEC29-AD0D-4BEB-B50B-F961629BBF23",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10305t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "93859A03-DE41-4E7B-8646-93925ACBFC42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10320:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8FD8BD84-B6F9-48D5-8903-2C56C12EFFEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10325:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9877F278-641B-4F83-B420-AB4E1018EA9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-11100he:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2ABF9AEE-BE1C-40EF-9E5F-6F3641BA7CDE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1110g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2C60AF0D-983D-454E-8940-209C471DC041",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1115g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9F26C6DA-ED6B-444A-A63A-5155FCA4F0DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1115g4e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66BAF09D-8199-4579-B25A-E7C5177385E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1115gre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "21EA30AA-713F-40AD-8C94-C1129198EE98",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1120g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B0D9B687-C3EE-4AF5-B9BE-7F0698D0F258",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1125g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "114DF43C-839F-4066-AA30-8DC16B1D6687",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5A87E241-4E74-4F89-8E5A-1A3980A5DDDF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12100f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C4325860-834E-4042-BDB2-5EB5A2D0F1F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12100t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0765F36F-94F8-45BE-8AF9-3373E5E567F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1220p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BC0F50A0-5F1D-4D30-B5F3-C94C44C323D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31A8AC04-8182-4BF2-9FDA-B2D607222EDA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12300t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "082596F0-6707-4175-A9CB-868D853F7362",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-l13g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "39FD6F9C-FEEA-4D52-8745-6477B50AFB0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10110y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "62BFF15A-0C78-45BC-8E71-EDF624AC162D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10200h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DB69A6F1-9B4D-4CDA-8388-E7FCBB2163DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10210u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "71615EAF-4DF4-4B9E-BF34-6ED0371A53D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10210y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "376B6DD7-1284-4BD9-88A4-5C34303CC5D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10300h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "403E8A3A-28C2-4329-BF31-1A530E317959",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1030g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F5F6F725-217C-48FF-86DD-E91A24156121",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1030g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "365696BF-CE3D-4CE6-92A8-413DDE43774E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10310y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C8515D29-3823-4F9B-9578-8BB52336A2A7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1035g1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BE048AEB-094D-4102-9DBF-488FEB53FF89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1035g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3907FA31-6F1A-45BA-ACF3-1C8EE05D9BA0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1035g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D48D9F5F-95BD-4F6B-8A37-D1CAA7D2DB25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4BF497A0-30BC-42A4-A000-C0D564D4872A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10400f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B3025301-52D3-43D7-B6AB-F3F0A5C882DC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10400h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7B2A62F5-A8DF-4565-B89F-9C58B1FB8D94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9466A6CC-8D69-4EB5-94E2-611297120462",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2D116C4-698B-45BC-8622-87E142B37922",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10500t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "36836EB0-99DD-4217-9182-1E9FC5656C42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10500te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CD507601-CD6D-4F11-A4A7-790FB740B401",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10505:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A8C26205-C602-46F6-B611-424709325D6C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "464587A0-9EAA-4DF5-AFEB-15F2FA9CD407",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10600k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1940F59A-67FD-45F9-9C78-51A50687628F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10600kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4B722E2A-1262-44FD-8F7C-F9A9A5C78744",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10600t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4DEFF6A7-0DE2-4BEE-80DC-BBAB259647AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11260h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2BCD9C35-95D0-49E6-A9AC-E3AA8CD3F7B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11300h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B40E9EC2-A8A6-4800-9F9E-B1237832D6F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1130g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "158CC66D-32E5-4396-8E5D-4D90EE9AB62C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11320h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "55227C1C-D6CE-40AD-A5AA-7143E0A7AEF7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1135g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E84F0381-296A-408E-90D4-A316EE894A9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "092E3E45-5F58-412F-BAC9-C3B5290D8349",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11400f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8EA7E6D0-0ADA-4BE1-8273-69AB3DE3BA36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11400h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B6FCAFC0-EEE2-43E4-AE90-1803588B5689",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A8640175-3BC2-4C7B-A5A3-51E5677EDECA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1140g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7077CBF1-1FC8-4AF9-8B39-A15871FFD3CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1145g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "53D902B5-D135-4961-AED9-EA6DF06534B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1145g7e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2910EB49-C9C6-4FC9-AA55-E7A0DAE28B93",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1145gre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B858B433-9DA0-4224-B94C-4962FB3A4138",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9F6B5FC3-8E55-430A-A55A-AF541690C576",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11500h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "55568460-F318-48FB-90E4-55CBBAF13E59",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11500t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C7AFF680-DBC6-432E-A6DE-E7E7E4F2F26A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1155g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ADB84973-3DAC-4458-A817-943302F5EFF7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1B26C730-32FA-4D51-88FA-E724147147BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11600k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AFF7C5BF-E151-42DB-B0CF-E2589904C9A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11600kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E12D6BD2-7D32-4194-84D3-A0DE4B88BFF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11600t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F3EC487F-B9A8-410F-AE1F-8D1B74BA77D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "74A47464-BB99-44BB-A1B7-D8469BEAF408",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12400f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12882E19-1107-48E7-9ECD-A2891B8900D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "896688AD-84FF-4270-8F44-61764C0052B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1240p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1646C42-B42B-451F-9B9D-AEE7CF74E9C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12450h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9729F36E-F830-4397-8B0E-A91BF5601F76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0FFEC0A8-69C2-4BE9-B510-5C111C6EE9BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12500h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "047CB3C6-C53C-4BA5-AB1C-5D739B30F9FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12500t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91BF3506-7257-4E37-98AC-DDF0283C1FA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1250p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "65E0B274-5CFA-481E-8355-64D7BC16D871",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9CC5B69A-022B-4F8C-BAAC-97AFBAEA9730",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63684C47-972B-45A3-9234-111F25FD35B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "28CE6C6D-7D12-4E4F-BB76-54BF1C0A7B97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5A4AFFB3-6117-4BCC-BE63-814042823182",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F880C0CA-815A-49D2-8BA6-F220E3E467D8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8200y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2AC12E92-33CB-4603-AC14-3351CE1D4E3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8210y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6E62309E-1071-4569-8C9A-11748D629CAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8265u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6D3E166F-3D9F-4D0D-924A-147883598EA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8310y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "71294A32-F3DD-45EA-A0FC-C3EA0351FA29",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8365u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C9054F35-AAB5-481E-B512-EDF4C3F2EA2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9300h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9A735A90-47E1-44C6-AE76-F6C7FFDCD4D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8AC9F52F-6669-459A-A0A9-8F472E1F2761",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9400f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A7E91B92-4DB7-4866-8370-C6F8616D3D81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9400h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "85F465BF-4548-45EB-AC40-384F4E6248EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9600k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B1DFFFEB-CC63-4F51-8828-C5D4E0287264",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9600kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B176D141-26B0-477E-B2DB-2E48D6FB82AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-l16g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9A4FD69F-FF53-43F4-97C8-40867DB67958",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10510u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "494A828B-F2BF-40CA-AAFB-7D2AF2BAF3AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10510y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FD97F84B-ED73-4FFD-8634-10631FEE03EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1060g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B6CDC1BE-6A64-425C-AF2C-7DFB28FB604A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10610u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D974FFFD-BBCC-444C-9EF1-AE478EEDB6E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1065g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2243674B-E505-4FED-B063-953A1569EA30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E1978F85-5BA5-468E-B797-7FA7EB4F489D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B8D3D0CA-C981-4091-99F9-203DA8F156F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7EB23D0C-D2BC-4E7F-94AF-CAF171A64307",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6CC9312B-40A7-4D4A-A61C-3BA865C29F63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7EBECBE5-2BF0-4175-81CC-C6D054C819B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BB33CC4F-9D51-4A11-B063-6E78F0D71555",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B7092B8E-DD3F-440D-B2AA-F0E5FC4A9725",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10710u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DA491401-C484-4F77-ABF8-D389C94BF7B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10750h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66F8B600-B618-48E1-81EE-14A8A843F09F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10810u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "42ADD367-82C8-4761-AEBA-A0200C5D1CEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10850h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4AF75C0E-BA48-4C56-8398-109D06B5A5D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10870h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "25329A6F-9D49-4EA7-B9FB-8C2FA5343475",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10875h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "22921B65-513F-4ACE-80A2-4A31199BB5EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11370h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63719B1D-5A98-44E3-80D8-CF0B4C1C6F80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11375h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D5365D3B-1B0B-416D-ACFB-23843FD25EAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11390h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2556EF0A-B29F-4E9E-BB77-955CBC851EFA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1160g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D8F5409D-23C7-4CA9-951C-8EEEAE31DFDE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1165g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5601E40A-96E1-4321-9682-055A1C607488",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CF36D9CC-2FD8-4D08-8712-E625D4754613",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3252CF19-9D1D-4A46-9C94-0E7255CDDD8C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E11C7F38-3313-4F6D-9D5D-E61C89E716B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "70B0C976-3B68-4647-909A-5D574D711C7D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EA18192E-7DBB-45BB-8568-CA7159AF8CE2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11800h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2FDB568-5340-4DD8-B933-1CD64C370BD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1180g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D28DF93B-E15D-47D3-B9C0-4AEE8B7FADD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11850h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "78F2DD1D-DB6F-44D1-BE3B-C798C09CC5F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11850he:-:*:*:*:*:*:*:*",
"matchCriteriaId": "104B88E7-3B8F-4C4E-AD07-CAD1DCD7898B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1185g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12ADA9A2-6E64-4F17-B369-816639F0D3BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1185g7e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "514B7B5E-D60D-464A-8CB0-273044FD2E09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1185gre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AFB608EE-83AF-4192-93E1-7DDBA5F6A54C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1195g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B807B5D8-BCDB-4398-8ADC-DBD1BD8D2B88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1260p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "989B6E1C-7681-4A11-B9F4-D94C47D57BFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12650h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F75A1B08-CE1F-47A5-B706-104A62861932",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1E458521-2BD9-4719-9F83-6ECC3BC19B70",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B8762D1-5333-4EED-B31E-338052061237",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "67DCFA7E-734D-4FE0-913E-74D85564ABE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FEF502AE-BD3F-461B-9476-FB04818DA1F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "445022AC-A3CD-402E-AF44-2C1BC2B790E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BF63765B-1BAE-4B53-9BA8-FDFDD2C58417",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1270p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D78245E2-BE22-4BD5-9252-44FF5815D7CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12800h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E1DF00E-1B1A-4FCA-BEEF-7D2BF9F001A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1280p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91A093D4-A800-4F28-8480-85D62068CB35",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-7640x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F946429E-3362-41E5-88D9-FA01BE8D4312",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-7740x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8E9EF2F2-750C-4CB7-9858-69D7FFA4EF31",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-7800x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8580A81E-8BDE-4EB5-B830-6AA7550A25C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-7820x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "43756EB8-9F85-4499-99F0-43E69CA3F470",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-8500y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "957F3AC9-D071-4932-B2C9-1643FB78BC7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-8565u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F41025AC-6EFE-4562-B1D1-BAB004875B06",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-8665u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "34DD3CCB-91D5-48D6-80BC-CA643385BCE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-9700k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1FB0C1DA-60C6-4C9E-99D6-7A47696DACD8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-9700kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F2EB81B1-7DEF-4CC3-ADC9-A4CB1042E406",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-9750hf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31CD303F-AAE9-4635-987D-742031232BDD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-9850h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4D0320CB-05E3-4D5B-BCEF-D862566B0AA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10850h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D48C9306-80AD-40CC-9516-E1B6F5A63556",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10850k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "39F9F143-0AB4-4302-82B8-B4EA790EB08D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10885h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE73B0A0-E275-449D-8ADD-86AE188DE82A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CE06C64A-1610-4340-98CF-AC91258AB215",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C27F79F3-EA0A-429C-8DA9-BC276A94AFB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B07609EB-E10B-4253-938E-81566036D81B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C9B7AEF3-7A62-43B2-8F0C-70E5A2CDB29A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2CC44D69-AAAB-4524-9D12-F1A606D57831",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D23D2887-1246-4EA4-B8B6-57BC7FB869E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BEFC46D5-B23D-4513-9669-4DC53662F87B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B93E897C-5D7B-4532-99D9-53192A1F776A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10920x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "33D0D618-D738-47F5-B7F7-C7F07972C893",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10940x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C7A147E8-0778-49CE-92EF-ED1950138528",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10980hk:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3D264277-00CB-4FCC-ADAA-38536609D0F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5CC25725-73F6-4948-B17A-A05E8978EB78",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6D9BFA32-89B3-4E26-B980-2694B5378D8B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "65E2A7C5-78D9-4F75-B8A2-5EB3ECEFBFF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F2D04A37-79EE-467B-BD8A-0CA0BDD85F0A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7FECF6BE-2CED-4510-91C5-195686C9C421",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B903E2A0-EE73-4F13-AB26-8F5644462E94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11950h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "170B497C-05F2-46B5-92CD-ACF7C0BE1711",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11980hk:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EEF53EA8-8EB4-455C-A986-405DBB122D3B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D6A5B34-780D-46F2-8DC8-F310F9201FE9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E6D78411-A542-48D7-B840-22290B3A98A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "86AABCC6-4CA4-4A2D-9DC6-D0AD6FF99BB1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900hk:-:*:*:*:*:*:*:*",
"matchCriteriaId": "58A1375C-4B33-4557-9BA0-D03EAC350D86",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "783F6EC3-354C-4501-9557-E1BFFC0852DC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FC8F48DC-E327-4B3D-BA52-901D21A6412E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "82004D25-6F97-4549-B98E-148E44134529",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-7900x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B97260E-1D7A-45B5-AD86-EBF8CA259FE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-7920x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "58002875-D63D-4ABD-A8B7-DCAEB7E94AE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-7940x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BAC07903-D4B7-423F-9F79-7DF45E5350BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-7960x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2FBC4FB5-7C2D-4E10-80BB-3951FFA3A6CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9800x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B32C5EE-D845-471C-85EA-DA5F9B04F01B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9820x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D93CC48C-DCCB-442A-98D5-3165CCFAE7F4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9880h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "659206BB-510A-47F8-8B6E-FD030A6BE1DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9900k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7C3257F5-CA55-4F35-9D09-5B85253DE786",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9900kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B6F8CEA0-1CD6-4F17-85E3-C1CB04D9833A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9900x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "655E770E-B9EE-4B08-B1EE-F393C7F68941",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9920x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DBC47200-8F3F-4969-AABA-39F4B1E4E263",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9940x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7EB17629-2454-478B-8E1A-AC2D2FC2233C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9960x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A28B6DE9-D383-4CA2-94D5-4C9CFF95E01E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9980hk:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A48A2969-DC53-48E2-A5CA-4DF2B00D1960",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_m3-8100y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E5AFFC8B-3AC1-49B4-9A73-18A3EC928591",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_7505:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BD6B51B5-96AA-44C8-9539-9D7F67143DC3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A263FA56-5F1F-4E91-A354-38648E130685",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D24E8214-881A-4C15-A544-FB3FD5D14DCA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6405:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1EDE72E-3734-4FB5-BC77-B7C3838D41F5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6405t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E07450B-D81B-474D-9150-C9D8A62D44A0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6405u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E78C7A9B-7DCE-416F-909E-B3CC52AEBE9C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9A892B60-7FD3-41A6-9997-586B76757416",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6500t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4701D592-F06C-4713-9736-19DB130B5E2B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6505:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B3E6063A-23C9-4845-B575-5D330B6C68F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6505t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D50C73A4-D52E-4560-B725-61F416E18505",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "25570E2C-BBE9-402F-9631-FA5014767CE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6605:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D59D57C2-CFB5-486E-A340-E63C7D7A8B6D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g7400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "998DCE68-F426-47C5-80F7-BFE42FD69DFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g7400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FBE04ADB-3037-41E8-8DF4-8588FDFB759A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_j6425:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D97C7A90-D8C6-4901-BCA1-E40DA173AA9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_n6415:-:*:*:*:*:*:*:*",
"matchCriteriaId": "638FA431-71EA-4668-AFF2-989A4994ED12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_j5005:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EC903FA4-2C4E-4EBB-8BFA-579844B87354",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_j5040:-:*:*:*:*:*:*:*",
"matchCriteriaId": "667F2E6C-C2FD-4E4B-9CC4-2EF33A74F61B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_n5000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2DF16D51-5662-47C3-8911-0FACEEDB9D80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_n5030:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ECC4430E-E4B1-454F-8C95-6412D34454C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_n6000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31282347-8DCB-4B37-A853-DFD9D5AF31EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_n6005:-:*:*:*:*:*:*:*",
"matchCriteriaId": "42841FAC-A6EC-44F3-9FCD-B4549A783014",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_bronze_3204:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E687CADE-6E49-4284-BD41-6CA2FDD846FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_bronze_3206r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0A7540F0-7EB8-4F64-AA31-9AF3D79BEC46",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_d1700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D94D7B29-565F-4E62-A958-27FFDDD7399E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_d2700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "594DDCAB-96D4-4999-824E-7597B971B6DC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2278g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63650DBF-4DBD-4655-AE93-5CBE53F8E0FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2278ge:-:*:*:*:*:*:*:*",
"matchCriteriaId": "00912C9C-D386-445E-B390-E96361ECDFA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2278gel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "60B582A1-784C-4BE8-A0D5-706DE01D769E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2286m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "556637E1-9502-41E7-B91D-082C92F233A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2288g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5EA930BC-EF68-4AD5-AA1B-0659358028D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2314:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1A8EA870-2228-4E81-A417-30E040A5C0E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2324g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "656D31B6-1E8D-4A44-9D7A-023051E7050A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2334:-:*:*:*:*:*:*:*",
"matchCriteriaId": "49EEE5AA-3867-4137-B165-5004C34C77B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2336:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2A38417-1DB2-4C85-80D9-D3968BF7A83B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2356g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1F74E9E4-F84C-4B7F-8A42-20EEC60986DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2374g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "74F99F83-A7E6-4AFD-BC42-7348EF6613AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2378:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5A62A9F4-2B98-4F2D-9143-08D1689E38AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2378g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B8FD06CB-F456-44BD-900B-06131DC68B6B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2386g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9044310E-4DF9-47BA-9D05-C1405DC8CDB2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2388g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BA881CDA-1C16-43F1-A7D5-69502512A21C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5215:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8DA109ED-BC4D-4F70-81B2-3CE0E2B3D9DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5215l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "070C20AB-66F2-4EE2-8134-5E40DBB9B9E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5217:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9CA49CF7-C6BE-4337-A0A8-A603D8955EE9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9C8F7F6B-847A-479D-B6B1-BBA331D06DE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4C375A9D-C7CE-49A6-B08D-9CAB22E16D32",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AF8D06DC-6B8A-4B7B-BB3E-778D432CFEF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E06531E6-126A-4FBB-BEBB-F9023C4738F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "93B8CDF0-1489-4E4C-B004-A22E06FC10D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5220:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A6ACF161-472E-4088-85C2-5940C9C88D45",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5220r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2E0B94F6-EC15-4C12-8BA5-CC6602A7A725",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5220s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "067C65E5-5392-4DAF-A6BD-640D78C19CE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5220t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A1647DAC-CED6-4DAF-8F82-A42D6D691DF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5222:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D93CC498-F558-4C2F-9E14-7897060CA9FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5315y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6839AE9B-9A8A-4312-80FC-0549C675A815",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5317:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1E0E7358-1EC1-43DA-99B3-A2D6D57E0121",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5318h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "43808CCF-1EF0-41CE-983D-DD6BB775895E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5318n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F2C5D3DE-5506-4F16-B7F9-5032A1277D23",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5318s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ED598260-2A9B-46F7-AA85-0DA97DA0D42D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5318y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "06F1CFD2-8F32-4CE8-9D9B-C65B332775B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5320:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7DD98889-58A1-4A5A-B79A-B2DA9EDA63DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5320h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3BF1F73B-4736-40BC-9053-951B5BF1059E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5320t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EDA47606-176C-4F6B-A316-4C536B63FA4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6208u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "76D48CFC-1322-4C53-8B53-88E7ACC724BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6209u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5F6456D0-32AE-44A9-9F63-AD64B5E49182",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6210u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "38EA99F9-22C2-47ED-9DDD-928E19C4C51E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6212u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9F8867B2-F297-4D30-AD43-77B0F67FAE3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6222v:-:*:*:*:*:*:*:*",
"matchCriteriaId": "178345A5-9A38-4C8F-B3BB-430276FA4998",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6226:-:*:*:*:*:*:*:*",
"matchCriteriaId": "831A7D63-4638-480C-94CB-ED06613BA75C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6226r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "178D9E36-79EC-4672-8E46-0FD6597CA1CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6230:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EED0D492-ADAB-41ED-A283-024D3CED441F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6230n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2BBB5A97-EA4F-454C-819C-DE1CE7018E7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6230r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D9733E69-E7CF-444C-B72C-AC8E5DEF2449",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6230t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0FD24563-9157-4DE1-95ED-D4E3E879219E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6234:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F83F8602-6679-4B3C-BBDD-3BDB2B317F70",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6238:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3CD3E45C-1943-42BA-9F6D-EA64D67BF954",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6238l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF7B4C84-1258-4F2F-B8A3-55353B3D13BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6238r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9B27F755-4C38-4469-8A9D-C9266BDA53ED",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6238t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0E21977E-7085-46C5-8E89-F952C2EBCE04",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6240:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DB72D13B-5880-4CB2-8E80-CB6A39B5A302",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6240l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "02BCB7D2-4B68-4FF8-BFC9-06C39A708C62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6240r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AAF31FBF-20FB-4B8A-ADE1-E29BB8B8A702",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6240y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7BF7298E-BC07-4C42-8F9C-C3B0CDFC86C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6242:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0C8292CC-DACB-489A-BCB2-73DC2C6F944C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6242r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2D83AEDF-2671-4278-8088-BA517192AB3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6244:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BF72F37A-2F28-40E6-A84B-0E1DF63B1812",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6246:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E8C1742C-96CC-4BCA-928E-D6B53ED2DB0E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6246r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3EAE9CE6-DA95-40B0-AE65-656FA4603D1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6248:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CAD0B5C3-633D-4F2A-8D56-8FA83F1B581C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6248r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5241B3E0-F968-4B16-8BF8-191C6F7B224A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5EFB52DD-5B7D-45BA-B249-A134D1B9EBD3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6250l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B82FC910-F3AB-42BF-9740-EC09F0AC179D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6252:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1BAE2B11-B0F5-415F-BD6B-E285EF9C9095",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6252n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3BA58EFB-7672-4902-ABC1-65217AA617AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6254:-:*:*:*:*:*:*:*",
"matchCriteriaId": "96E2764D-7D6A-4CE0-A628-FFE966A6462F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6256:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1D66D18C-17F2-4259-B1D8-7C63797A024C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6258r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "25C8DFB5-9D8B-4370-849A-DC061910E54F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6262v:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0B704835-1250-44E1-923C-5DE2F4DD25D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6312u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AF7D9572-8D03-4D54-B0E1-C0A3F3F90FCF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6314u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE3CA224-B5DE-4451-9CF9-929ABEA242EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6326:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A3D8E340-AE91-4F29-9F22-E0CE6718FC13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6328h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "710DBCD5-788D-4140-AC16-EC6E126CFA66",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6328hl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A767EC83-AAED-4FEA-A35E-A503369FE4FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6330:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FB1ACDED-85B4-4A11-BD03-8E1B9563B7F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6330h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D6C4A47D-7F66-4ACC-9C69-0A355D46CDC1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6330n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "20821868-F7D2-4132-8D63-98E1089DB46C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6334:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4EB9295A-8832-4670-B268-FBD0BC086447",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6336y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "489BD4AC-50C6-422B-A2B2-00A70E611114",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6338:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C5694238-F4E5-4689-ADD2-67C25762ED92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6338n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A57D44C0-AA8D-46B0-8923-ADB312E3937F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6338t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3A551BBB-76CD-4C26-913F-B02C66E5D846",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6342:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8A4A44F2-68BF-4709-946B-C976DA3A9C7E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6346:-:*:*:*:*:*:*:*",
"matchCriteriaId": "038AC553-5523-4687-843D-6FEA7264EDEA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6348:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8DE5D09C-3272-4810-9F41-97BDBBFE4160",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6348h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "59C5122F-D822-4E71-A417-88EB51F1786B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6354:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F14C3438-B876-45B9-85F5-61354207AF8A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8253:-:*:*:*:*:*:*:*",
"matchCriteriaId": "94A6DA7A-7C97-40E1-B31A-B92BB658C429",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8256:-:*:*:*:*:*:*:*",
"matchCriteriaId": "54AF128B-9984-4C91-B7F6-968DE376C3BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8260:-:*:*:*:*:*:*:*",
"matchCriteriaId": "28B167F1-63FA-4C86-84AB-836ABF84E6E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8260l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "955420F9-3A3F-40E0-9940-DD43C5C78D62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8260y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BC4A437C-6C00-4729-91CC-D27EB3542633",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8268:-:*:*:*:*:*:*:*",
"matchCriteriaId": "74ED727D-B1A9-4F4B-92C7-3F00F3A80013",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8270:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2C24951-B3FA-48E6-AFAC-6CA0D2348230",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8276:-:*:*:*:*:*:*:*",
"matchCriteriaId": "185E8FBC-9EE9-472E-867B-0B0DEEECA13E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8276l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AB3C00A0-C28A-46EB-853D-DAE3819399D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8280:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0951DB50-AC8E-4C17-A2A9-DD4A198C4DD2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8280l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E0CAB607-87B2-49F4-9FAB-662D5EA3D11C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8351n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D7C504C3-7EEE-4A0F-8589-19C1E806E690",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8352m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5230F6AF-88CB-4EE2-B292-8B9A7217D10F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8352s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5B45C39D-03E8-46C1-88DD-94E382F4A961",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8352v:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF2DC691-025A-441E-AAC2-C8583F54733D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8352y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E8FB7EE6-6808-4879-A0A3-E85FE5CB37CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8353h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EBE07EA7-4CDF-4038-A948-6AC126C7F6AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8354h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "06A2241C-37AE-41AE-A8D1-D9AB18CCE16D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8356h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BB6DEAA1-3209-4B49-B931-43E8C1C5BE14",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8358:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CCE086F8-5C8B-4F0C-B53A-76BD4E67B678",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8358p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "00B21B5C-0FDE-4A8E-A9FC-5CF822A74B20",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8360h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB15368B-21A1-429E-8B9C-A095C4E8BA67",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8360hl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BA925F96-6DDD-4F71-BF13-710C8A89D860",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8360y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E41414A-6B0B-4511-A9A1-7FF99DD25DB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8362:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91EB66B4-8F1B-4F35-9371-17FB761997CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8368:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CBDFD1AF-2716-4C95-ADFF-79EFA915C286",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8368q:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5390A12B-80BD-4889-BF0F-95E65D10D037",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8376h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C1D6444A-B9CF-4D70-A8A9-E6B57B6F13DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8376hl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "05637A96-AF09-4FF5-A918-AB369AA2D1CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8380:-:*:*:*:*:*:*:*",
"matchCriteriaId": "33FA0279-D587-471E-8EC0-211F78DA4DFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8380h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D1CC27DB-11D4-412A-BC69-CF32A0CABCF8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8380hl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E8FE9694-F0E7-4B45-82A1-065DA96B9794",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_9221:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DBC93757-5FD7-403D-B5ED-CC8793002352",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_9222:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0A7019D4-58E0-4B73-93B8-D3B0E86BF2D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_9242:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6DF8D8C4-29EA-4D09-87AB-A570403BA0E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_9282:-:*:*:*:*:*:*:*",
"matchCriteriaId": "89421EC5-52E5-441F-AD3B-5C5E964F836D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4208:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FA909754-B60A-4B30-AF42-4C8734E155AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4209t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EBEFB056-0872-434B-9630-28A1AAEAD470",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4210:-:*:*:*:*:*:*:*",
"matchCriteriaId": "21A62CB9-FB01-45CB-9E10-E72D87C0E1F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4210r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CD8EBFCC-AD76-4285-93BD-D14219C6EA5D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4210t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7FF7E334-6DC7-44B5-A102-649A68300C80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4214:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E1B4F7FE-61A3-417A-BAA9-E686A76F3A94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4214r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9DE4C87E-CB23-4804-9BBD-2533C5E1D6D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4214y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7305838B-84CA-4BB8-A350-B2D2844F1041",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4215:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D356D196-8AB0-4387-A644-C5E68174A60C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4215r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "89587A92-6234-40C3-83DB-F72319FFBC79",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4216:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4F50C03E-CBEB-4738-BDF4-DC296CE9DFA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4309y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB267830-FA6E-4C2E-8BBE-C3DA12A6A33D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4310:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D557D68C-8279-4BFD-9EA6-17A83754B8FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4310t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7ECA0BC9-1CA4-4B95-B98F-9098B2550309",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4314:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1298CF87-124D-450B-928D-F39CCA2BAF42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4316:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AF12820F-A2BE-44BF-A85D-7F4623898DAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-10855:-:*:*:*:*:*:*:*",
"matchCriteriaId": "65A473FF-F3AD-41F5-B63A-3D6DDB0BD216",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-10855m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "853DE44A-84C9-4959-865F-D538DF895647",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-10885m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "13326C69-C160-482F-BF28-5425B57BE738",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11155mle:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1F15EF0E-37CF-4944-8B6B-A82B4348CDC0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11155mre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "92D12220-840B-4397-889C-9649F34B7E25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11555mle:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6AB926B2-077B-4752-80EC-D39446115FCD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11555mre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C8C1D750-1FE9-40F8-BCB9-77D13C13906C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11855m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D07040D2-2ADC-4CC4-860F-74A7C64FD6FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11865mld:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5D2ED18E-241E-4154-9793-FB0E60F9C00F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11865mre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D59D80E8-5A2C-402F-8AE3-766ECEDA14F3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11955m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8F66D2E5-BD5B-406D-82A0-4E1E32EDC337",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "557E240A-6760-434E-9C3A-1E5E9129912D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1250p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6B7565F3-5D41-4A1F-948B-1A55E3AD3EF8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1270:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C71A52C1-1FBF-4730-8234-700F87D5E74D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1270p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7B930DF9-C425-41AF-9736-0BD611C79CA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9DF260A0-CDD8-4EE1-B3F4-73CD02FDCD11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5B84F7DC-EE67-4748-8AE2-7070A6F79BAD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7C156433-48A3-4B2E-A8DB-AF1F09B2EFA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D78A1CFF-F05E-429C-A9AA-935078574A3B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE28AD41-2287-4F2B-924C-30B66A320443",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CE3A7AD3-D7D4-40A5-B1B6-A818B5ACE6D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1350:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E31FFECA-F663-4B59-9800-1C6A8BD84626",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1350p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E3F194D4-9425-470E-B812-CD92B5C5A68A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1370:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6E426811-F97D-42CE-B06D-41CDA84E1B55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1370p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4F5F5950-C21F-4142-BA1E-E074FAF249F5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1390:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E2BC8A89-4CF3-473B-9251-9FA5FF8ADBD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1390p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "30EE6B10-84FC-4D9D-8F39-4B7000CC85AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1390t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5AFDA5D5-F00F-40CC-B492-C433200A491C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2223:-:*:*:*:*:*:*:*",
"matchCriteriaId": "708D6E00-A2E5-4B08-88E7-C872ACFC341D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2225:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0CD8EE0E-2BA3-49DD-91D1-81AB67F16475",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2235:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AC75E5CF-4241-45A8-AD45-1F7F077CEEA1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2245:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D132291B-AADD-49E3-ADD6-333E1F1D8DFE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2255:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2ADF328B-D286-4C36-9F21-11A58D55D03A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2265:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C6D23470-A702-426D-A63C-4F7BAC158762",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2275:-:*:*:*:*:*:*:*",
"matchCriteriaId": "750A77C5-1367-4E04-9ABF-1AB2D46C29C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2295:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D1340A29-3428-4FAD-AA07-7F625915E34D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3223:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ADA1FA19-A836-4D6A-8C2D-718ECE6866D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3225:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3ECEBDB0-2E0A-416B-9737-82C1FC65A06C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3235:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C39B6A99-7060-4011-8FA3-E5ABE5C02813",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3245:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DF9E723E-1095-424E-A90D-380CA0D2795E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3245m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "35380FB9-90FF-405F-8E2E-01C1DD209540",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3265:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2215D655-0EA9-4530-AB68-7B1C7360D692",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3265m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "020B6FED-EAE2-478C-8FF4-CB75F24E9A9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3275:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AE519C62-F5BB-461C-91EF-2979CD506C63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3275m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F693457C-3529-4E62-A672-1B862F235D0F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "6EDB6772-7FDB-45FF-8D72-952902A7EE56",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9955F62A-75D3-4347-9AD3-5947FC365838",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7A6D77C7-A2F4-4700-AB5A-3EC853496ECA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access."
},
{
"lang": "es",
"value": "La compartici\u00f3n no transparente de selectores de predicci\u00f3n de rama entre contextos en algunos procesadores Intel(R) puede permitir que un usuario autorizado permita potencialmente una divulgaci\u00f3n de informaci\u00f3n por medio del acceso local"
}
],
"id": "CVE-2022-0001",
"lastModified": "2025-05-05T17:17:29.393",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.0,
"impactScore": 4.0,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.0,
"impactScore": 4.0,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2022-03-11T18:15:25.143",
"references": [
{
"source": "secure@intel.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2022/03/18/2"
},
{
"source": "secure@intel.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220818-0004/"
},
{
"source": "secure@intel.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html"
},
{
"source": "secure@intel.com",
"url": "https://www.kb.cert.org/vuls/id/155143"
},
{
"source": "secure@intel.com",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2022/03/18/2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220818-0004/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.kb.cert.org/vuls/id/155143"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.vicarius.io/vsociety/posts/cve-2022-0001-detect-specter-vulnerability?prevUrl=wizard"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.vicarius.io/vsociety/posts/cve-2022-0001-mitigate-specter-vulnerability?prevUrl=wizard"
}
],
"sourceIdentifier": "secure@intel.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GSD-2022-0001
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-0001",
"description": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"id": "GSD-2022-0001",
"references": [
"https://www.suse.com/security/cve/CVE-2022-0001.html",
"https://www.debian.org/security/2022/dsa-5095",
"https://www.debian.org/security/2022/dsa-5096",
"https://ubuntu.com/security/CVE-2022-0001",
"https://advisories.mageia.org/CVE-2022-0001.html",
"https://security.archlinux.org/CVE-2022-0001",
"https://alas.aws.amazon.com/cve/html/CVE-2022-0001.html",
"https://linux.oracle.com/cve/CVE-2022-0001.html",
"https://access.redhat.com/errata/RHSA-2022:1975",
"https://access.redhat.com/errata/RHSA-2022:1988"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2022-0001"
],
"details": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"id": "GSD-2022-0001",
"modified": "2023-12-13T01:19:11.824708Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secure@intel.com",
"ID": "CVE-2022-0001",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Intel(R) Processors",
"version": {
"version_data": [
{
"version_value": "See references"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": " information disclosure "
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html",
"refsource": "MISC",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html"
},
{
"name": "[oss-security] 20220318 Xen Security Advisory 398 v2 - Multiple speculative security issues",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2022/03/18/2"
},
{
"name": "https://www.oracle.com/security-alerts/cpujul2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220818-0004/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20220818-0004/"
},
{
"name": "VU#155143",
"refsource": "CERT-VN",
"url": "https://www.kb.cert.org/vuls/id/155143"
}
]
}
},
"nvd.nist.gov": {
"cve": {
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:intel:atom_p5921b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E6D6CEE1-25DF-43C5-AEBB-49585B64236A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_p5931b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31E2104F-0CE3-4B9D-88B3-35D982C36562",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_p5942b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9D860FEC-BA79-4FEE-A79C-88AA857358E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_p5962b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C2CEF8A6-2445-4B63-822D-81F6AC708D62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6200fe:-:*:*:*:*:*:*:*",
"matchCriteriaId": "89231773-9D9B-434A-A6A3-8527C4F6FEBB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6211e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A85EA674-2537-4323-AEDA-FA356489E7DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6212re:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F85599DD-3F80-4EB0-9753-D24EDD8D76CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6413e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1B3348F4-8E2B-42BE-9F3A-48DFF5CE0047",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6425e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7F068F4F-8CCD-4218-871C-BEABEB0DAB55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6425re:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7313975C-41A5-4657-8758-1C16F947BE4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:atom_x6427fe:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2FBE4406-9979-4723-833C-176F051E6389",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_5305u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "39831D4E-743A-4C09-900F-24DDAB5D1B22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_6305:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D63F16DE-E30E-4268-B079-E07FD28355BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_6305e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "936DAD12-11D6-4AAF-B48D-5076C94BF30C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_6600he:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F11BB81D-8243-4B19-835C-6E0B4341894A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5205u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8BFB5A51-399C-4AC5-BA09-E74C5AD520EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5305u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F42D5DAA-8279-4A4F-A843-EBA0814952BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "545649F6-46CA-40CB-8A00-5DD40F6A83B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D42AC70C-B114-4795-8769-D9AF12298456",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5905:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6DEF520D-9427-4C5A-81F0-FCED5E2A8B99",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5905t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4B773674-1DB0-41D8-A758-2AF49F4722D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5920:-:*:*:*:*:*:*:*",
"matchCriteriaId": "153ABD9D-2C72-40C6-8DF9-3EB7D1D35B09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g5925:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4036274A-CC6F-48B2-BF2E-DF51C4148B93",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g6900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABAF1125-B4F7-4BC9-B9DA-CA9125D4BC65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_g6900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4AA8490E-45D6-4B6E-AF98-B75385574D6D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j4005:-:*:*:*:*:*:*:*",
"matchCriteriaId": "652EC574-B9B6-4747-AE72-39D1379A596B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j4025:-:*:*:*:*:*:*:*",
"matchCriteriaId": "522A9A57-B8D8-4C61-92E3-BE894A765C12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j4105:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A588BEB3-90B5-482E-B6C4-DC6529B0B4C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j4125:-:*:*:*:*:*:*:*",
"matchCriteriaId": "826BAF04-E174-483D-8700-7FA1EAC4D555",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_j6413:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F7A8BF58-1D33-484A-951C-808443912BE8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C8771AB4-2F51-494D-8C86-3524BB4219C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4020:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6D7E822D-994F-410D-B13C-939449FFC293",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AB5576F2-4914-427C-9518-ED7D16630CC5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4120:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3ABB7C52-863F-4291-A05B-422EE9615FAE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B54D15DF-53EA-4611-932A-EDB8279F582A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n4504:-:*:*:*:*:*:*:*",
"matchCriteriaId": "06499DE1-DA07-4C39-BBAC-FC57F4E0D4C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n5100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "96D6F5D3-3559-47AD-8201-C9D34417DC09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n5105:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AA455AC5-8434-4B59-BE89-E82CDACD2AEC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:celeron_n6211:-:*:*:*:*:*:*:*",
"matchCriteriaId": "406E9139-BCFF-406B-A856-57896D27B752",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1000g1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6DAA00D4-A8AA-44AA-9609-0A40BD4FB2E0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1000g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF64D95C-653A-4864-A572-CD0A64B6CDF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1005g1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "30B2F570-1DD9-49C7-BB72-0EA0E9A417C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1DA9CBE9-CF87-495B-8D80-5DDDCD2044B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10100f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "614B1B4E-E1D7-417F-86D1-92F75D597E36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10100t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4BD11E86-B786-43C8-9B67-8F680CC30451",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10100te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3D740D69-83B6-4DBF-8617-9B1E96DFF4FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10105:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8BB09ACB-EFFF-4C2F-BEB5-AE1EEDC1EC2E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10105f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A8B15567-BFEA-43BE-9817-98A1F5548541",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10105t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "984C7C7A-2F8E-4918-8526-64A080943E0E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10110u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "44BF0AFB-E9DC-4EA5-BFFF-48F896C655E0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C7AFC285-2248-45E7-9009-1402628F17E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10300t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "078DAE1F-8581-44FB-83EA-575685928C4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10305:-:*:*:*:*:*:*:*",
"matchCriteriaId": "887BEC29-AD0D-4BEB-B50B-F961629BBF23",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10305t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "93859A03-DE41-4E7B-8646-93925ACBFC42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10320:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8FD8BD84-B6F9-48D5-8903-2C56C12EFFEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-10325:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9877F278-641B-4F83-B420-AB4E1018EA9E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-11100he:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2ABF9AEE-BE1C-40EF-9E5F-6F3641BA7CDE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1110g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2C60AF0D-983D-454E-8940-209C471DC041",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1115g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9F26C6DA-ED6B-444A-A63A-5155FCA4F0DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1115g4e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66BAF09D-8199-4579-B25A-E7C5177385E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1115gre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "21EA30AA-713F-40AD-8C94-C1129198EE98",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1120g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B0D9B687-C3EE-4AF5-B9BE-7F0698D0F258",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1125g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "114DF43C-839F-4066-AA30-8DC16B1D6687",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5A87E241-4E74-4F89-8E5A-1A3980A5DDDF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12100f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C4325860-834E-4042-BDB2-5EB5A2D0F1F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12100t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0765F36F-94F8-45BE-8AF9-3373E5E567F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-1220p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BC0F50A0-5F1D-4D30-B5F3-C94C44C323D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31A8AC04-8182-4BF2-9FDA-B2D607222EDA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-12300t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "082596F0-6707-4175-A9CB-868D853F7362",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i3-l13g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "39FD6F9C-FEEA-4D52-8745-6477B50AFB0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10110y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "62BFF15A-0C78-45BC-8E71-EDF624AC162D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10200h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DB69A6F1-9B4D-4CDA-8388-E7FCBB2163DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10210u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "71615EAF-4DF4-4B9E-BF34-6ED0371A53D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10210y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "376B6DD7-1284-4BD9-88A4-5C34303CC5D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10300h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "403E8A3A-28C2-4329-BF31-1A530E317959",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1030g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F5F6F725-217C-48FF-86DD-E91A24156121",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1030g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "365696BF-CE3D-4CE6-92A8-413DDE43774E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10310y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C8515D29-3823-4F9B-9578-8BB52336A2A7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1035g1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BE048AEB-094D-4102-9DBF-488FEB53FF89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1035g4:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3907FA31-6F1A-45BA-ACF3-1C8EE05D9BA0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1035g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D48D9F5F-95BD-4F6B-8A37-D1CAA7D2DB25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4BF497A0-30BC-42A4-A000-C0D564D4872A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10400f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B3025301-52D3-43D7-B6AB-F3F0A5C882DC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10400h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7B2A62F5-A8DF-4565-B89F-9C58B1FB8D94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9466A6CC-8D69-4EB5-94E2-611297120462",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2D116C4-698B-45BC-8622-87E142B37922",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10500t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "36836EB0-99DD-4217-9182-1E9FC5656C42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10500te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CD507601-CD6D-4F11-A4A7-790FB740B401",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10505:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A8C26205-C602-46F6-B611-424709325D6C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "464587A0-9EAA-4DF5-AFEB-15F2FA9CD407",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10600k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1940F59A-67FD-45F9-9C78-51A50687628F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10600kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4B722E2A-1262-44FD-8F7C-F9A9A5C78744",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-10600t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4DEFF6A7-0DE2-4BEE-80DC-BBAB259647AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11260h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2BCD9C35-95D0-49E6-A9AC-E3AA8CD3F7B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11300h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B40E9EC2-A8A6-4800-9F9E-B1237832D6F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1130g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "158CC66D-32E5-4396-8E5D-4D90EE9AB62C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11320h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "55227C1C-D6CE-40AD-A5AA-7143E0A7AEF7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1135g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E84F0381-296A-408E-90D4-A316EE894A9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "092E3E45-5F58-412F-BAC9-C3B5290D8349",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11400f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8EA7E6D0-0ADA-4BE1-8273-69AB3DE3BA36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11400h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B6FCAFC0-EEE2-43E4-AE90-1803588B5689",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A8640175-3BC2-4C7B-A5A3-51E5677EDECA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1140g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7077CBF1-1FC8-4AF9-8B39-A15871FFD3CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1145g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "53D902B5-D135-4961-AED9-EA6DF06534B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1145g7e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2910EB49-C9C6-4FC9-AA55-E7A0DAE28B93",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1145gre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B858B433-9DA0-4224-B94C-4962FB3A4138",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9F6B5FC3-8E55-430A-A55A-AF541690C576",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11500h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "55568460-F318-48FB-90E4-55CBBAF13E59",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11500t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C7AFF680-DBC6-432E-A6DE-E7E7E4F2F26A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1155g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ADB84973-3DAC-4458-A817-943302F5EFF7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1B26C730-32FA-4D51-88FA-E724147147BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11600k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AFF7C5BF-E151-42DB-B0CF-E2589904C9A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11600kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E12D6BD2-7D32-4194-84D3-A0DE4B88BFF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-11600t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F3EC487F-B9A8-410F-AE1F-8D1B74BA77D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "74A47464-BB99-44BB-A1B7-D8469BEAF408",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12400f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12882E19-1107-48E7-9ECD-A2891B8900D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "896688AD-84FF-4270-8F44-61764C0052B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1240p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1646C42-B42B-451F-9B9D-AEE7CF74E9C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12450h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9729F36E-F830-4397-8B0E-A91BF5601F76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0FFEC0A8-69C2-4BE9-B510-5C111C6EE9BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12500h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "047CB3C6-C53C-4BA5-AB1C-5D739B30F9FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12500t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91BF3506-7257-4E37-98AC-DDF0283C1FA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-1250p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "65E0B274-5CFA-481E-8355-64D7BC16D871",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9CC5B69A-022B-4F8C-BAAC-97AFBAEA9730",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63684C47-972B-45A3-9234-111F25FD35B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "28CE6C6D-7D12-4E4F-BB76-54BF1C0A7B97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5A4AFFB3-6117-4BCC-BE63-814042823182",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-12600t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F880C0CA-815A-49D2-8BA6-F220E3E467D8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8200y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2AC12E92-33CB-4603-AC14-3351CE1D4E3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8210y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6E62309E-1071-4569-8C9A-11748D629CAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8265u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6D3E166F-3D9F-4D0D-924A-147883598EA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8310y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "71294A32-F3DD-45EA-A0FC-C3EA0351FA29",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-8365u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C9054F35-AAB5-481E-B512-EDF4C3F2EA2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9300h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9A735A90-47E1-44C6-AE76-F6C7FFDCD4D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8AC9F52F-6669-459A-A0A9-8F472E1F2761",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9400f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A7E91B92-4DB7-4866-8370-C6F8616D3D81",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9400h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "85F465BF-4548-45EB-AC40-384F4E6248EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9600k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B1DFFFEB-CC63-4F51-8828-C5D4E0287264",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-9600kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B176D141-26B0-477E-B2DB-2E48D6FB82AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i5-l16g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9A4FD69F-FF53-43F4-97C8-40867DB67958",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10510u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "494A828B-F2BF-40CA-AAFB-7D2AF2BAF3AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10510y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FD97F84B-ED73-4FFD-8634-10631FEE03EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1060g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B6CDC1BE-6A64-425C-AF2C-7DFB28FB604A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10610u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D974FFFD-BBCC-444C-9EF1-AE478EEDB6E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1065g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2243674B-E505-4FED-B063-953A1569EA30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E1978F85-5BA5-468E-B797-7FA7EB4F489D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B8D3D0CA-C981-4091-99F9-203DA8F156F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7EB23D0C-D2BC-4E7F-94AF-CAF171A64307",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6CC9312B-40A7-4D4A-A61C-3BA865C29F63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7EBECBE5-2BF0-4175-81CC-C6D054C819B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BB33CC4F-9D51-4A11-B063-6E78F0D71555",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10700te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B7092B8E-DD3F-440D-B2AA-F0E5FC4A9725",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10710u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DA491401-C484-4F77-ABF8-D389C94BF7B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10750h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "66F8B600-B618-48E1-81EE-14A8A843F09F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10810u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "42ADD367-82C8-4761-AEBA-A0200C5D1CEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10850h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4AF75C0E-BA48-4C56-8398-109D06B5A5D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10870h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "25329A6F-9D49-4EA7-B9FB-8C2FA5343475",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-10875h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "22921B65-513F-4ACE-80A2-4A31199BB5EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11370h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63719B1D-5A98-44E3-80D8-CF0B4C1C6F80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11375h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D5365D3B-1B0B-416D-ACFB-23843FD25EAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11390h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2556EF0A-B29F-4E9E-BB77-955CBC851EFA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1160g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D8F5409D-23C7-4CA9-951C-8EEEAE31DFDE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1165g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5601E40A-96E1-4321-9682-055A1C607488",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CF36D9CC-2FD8-4D08-8712-E625D4754613",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3252CF19-9D1D-4A46-9C94-0E7255CDDD8C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E11C7F38-3313-4F6D-9D5D-E61C89E716B1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "70B0C976-3B68-4647-909A-5D574D711C7D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11700t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EA18192E-7DBB-45BB-8568-CA7159AF8CE2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11800h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2FDB568-5340-4DD8-B933-1CD64C370BD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1180g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D28DF93B-E15D-47D3-B9C0-4AEE8B7FADD0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11850h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "78F2DD1D-DB6F-44D1-BE3B-C798C09CC5F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-11850he:-:*:*:*:*:*:*:*",
"matchCriteriaId": "104B88E7-3B8F-4C4E-AD07-CAD1DCD7898B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1185g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12ADA9A2-6E64-4F17-B369-816639F0D3BF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1185g7e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "514B7B5E-D60D-464A-8CB0-273044FD2E09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1185gre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AFB608EE-83AF-4192-93E1-7DDBA5F6A54C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1195g7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B807B5D8-BCDB-4398-8ADC-DBD1BD8D2B88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1260p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "989B6E1C-7681-4A11-B9F4-D94C47D57BFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12650h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F75A1B08-CE1F-47A5-B706-104A62861932",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1E458521-2BD9-4719-9F83-6ECC3BC19B70",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B8762D1-5333-4EED-B31E-338052061237",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "67DCFA7E-734D-4FE0-913E-74D85564ABE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FEF502AE-BD3F-461B-9476-FB04818DA1F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "445022AC-A3CD-402E-AF44-2C1BC2B790E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12700t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BF63765B-1BAE-4B53-9BA8-FDFDD2C58417",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1270p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D78245E2-BE22-4BD5-9252-44FF5815D7CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-12800h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E1DF00E-1B1A-4FCA-BEEF-7D2BF9F001A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-1280p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91A093D4-A800-4F28-8480-85D62068CB35",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-7640x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F946429E-3362-41E5-88D9-FA01BE8D4312",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-7740x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8E9EF2F2-750C-4CB7-9858-69D7FFA4EF31",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-7800x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8580A81E-8BDE-4EB5-B830-6AA7550A25C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-7820x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "43756EB8-9F85-4499-99F0-43E69CA3F470",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-8500y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "957F3AC9-D071-4932-B2C9-1643FB78BC7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-8565u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F41025AC-6EFE-4562-B1D1-BAB004875B06",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-8665u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "34DD3CCB-91D5-48D6-80BC-CA643385BCE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-9700k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1FB0C1DA-60C6-4C9E-99D6-7A47696DACD8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-9700kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F2EB81B1-7DEF-4CC3-ADC9-A4CB1042E406",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-9750hf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31CD303F-AAE9-4635-987D-742031232BDD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i7-9850h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4D0320CB-05E3-4D5B-BCEF-D862566B0AA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10850h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D48C9306-80AD-40CC-9516-E1B6F5A63556",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10850k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "39F9F143-0AB4-4302-82B8-B4EA790EB08D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10885h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE73B0A0-E275-449D-8ADD-86AE188DE82A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CE06C64A-1610-4340-98CF-AC91258AB215",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C27F79F3-EA0A-429C-8DA9-BC276A94AFB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B07609EB-E10B-4253-938E-81566036D81B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C9B7AEF3-7A62-43B2-8F0C-70E5A2CDB29A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2CC44D69-AAAB-4524-9D12-F1A606D57831",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D23D2887-1246-4EA4-B8B6-57BC7FB869E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BEFC46D5-B23D-4513-9669-4DC53662F87B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10900x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B93E897C-5D7B-4532-99D9-53192A1F776A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10920x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "33D0D618-D738-47F5-B7F7-C7F07972C893",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10940x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C7A147E8-0778-49CE-92EF-ED1950138528",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-10980hk:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3D264277-00CB-4FCC-ADAA-38536609D0F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5CC25725-73F6-4948-B17A-A05E8978EB78",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6D9BFA32-89B3-4E26-B980-2694B5378D8B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "65E2A7C5-78D9-4F75-B8A2-5EB3ECEFBFF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F2D04A37-79EE-467B-BD8A-0CA0BDD85F0A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7FECF6BE-2CED-4510-91C5-195686C9C421",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B903E2A0-EE73-4F13-AB26-8F5644462E94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11950h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "170B497C-05F2-46B5-92CD-ACF7C0BE1711",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-11980hk:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EEF53EA8-8EB4-455C-A986-405DBB122D3B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0D6A5B34-780D-46F2-8DC8-F310F9201FE9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900f:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E6D78411-A542-48D7-B840-22290B3A98A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "86AABCC6-4CA4-4A2D-9DC6-D0AD6FF99BB1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900hk:-:*:*:*:*:*:*:*",
"matchCriteriaId": "58A1375C-4B33-4557-9BA0-D03EAC350D86",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "783F6EC3-354C-4501-9557-E1BFFC0852DC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FC8F48DC-E327-4B3D-BA52-901D21A6412E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-12900t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "82004D25-6F97-4549-B98E-148E44134529",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-7900x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8B97260E-1D7A-45B5-AD86-EBF8CA259FE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-7920x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "58002875-D63D-4ABD-A8B7-DCAEB7E94AE4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-7940x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BAC07903-D4B7-423F-9F79-7DF45E5350BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-7960x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2FBC4FB5-7C2D-4E10-80BB-3951FFA3A6CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9800x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2B32C5EE-D845-471C-85EA-DA5F9B04F01B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9820x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D93CC48C-DCCB-442A-98D5-3165CCFAE7F4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9880h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "659206BB-510A-47F8-8B6E-FD030A6BE1DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9900k:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7C3257F5-CA55-4F35-9D09-5B85253DE786",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9900kf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B6F8CEA0-1CD6-4F17-85E3-C1CB04D9833A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9900x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "655E770E-B9EE-4B08-B1EE-F393C7F68941",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9920x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DBC47200-8F3F-4969-AABA-39F4B1E4E263",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9940x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7EB17629-2454-478B-8E1A-AC2D2FC2233C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9960x:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A28B6DE9-D383-4CA2-94D5-4C9CFF95E01E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_i9-9980hk:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A48A2969-DC53-48E2-A5CA-4DF2B00D1960",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:core_m3-8100y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E5AFFC8B-3AC1-49B4-9A73-18A3EC928591",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_7505:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BD6B51B5-96AA-44C8-9539-9D7F67143DC3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A263FA56-5F1F-4E91-A354-38648E130685",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D24E8214-881A-4C15-A544-FB3FD5D14DCA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6405:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F1EDE72E-3734-4FB5-BC77-B7C3838D41F5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6405t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E07450B-D81B-474D-9150-C9D8A62D44A0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6405u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E78C7A9B-7DCE-416F-909E-B3CC52AEBE9C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9A892B60-7FD3-41A6-9997-586B76757416",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6500t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4701D592-F06C-4713-9736-19DB130B5E2B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6505:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B3E6063A-23C9-4845-B575-5D330B6C68F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6505t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D50C73A4-D52E-4560-B725-61F416E18505",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "25570E2C-BBE9-402F-9631-FA5014767CE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g6605:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D59D57C2-CFB5-486E-A340-E63C7D7A8B6D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g7400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "998DCE68-F426-47C5-80F7-BFE42FD69DFB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_gold_g7400t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FBE04ADB-3037-41E8-8DF4-8588FDFB759A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_j6425:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D97C7A90-D8C6-4901-BCA1-E40DA173AA9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_n6415:-:*:*:*:*:*:*:*",
"matchCriteriaId": "638FA431-71EA-4668-AFF2-989A4994ED12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_j5005:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EC903FA4-2C4E-4EBB-8BFA-579844B87354",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_j5040:-:*:*:*:*:*:*:*",
"matchCriteriaId": "667F2E6C-C2FD-4E4B-9CC4-2EF33A74F61B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_n5000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2DF16D51-5662-47C3-8911-0FACEEDB9D80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_n5030:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ECC4430E-E4B1-454F-8C95-6412D34454C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_n6000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31282347-8DCB-4B37-A853-DFD9D5AF31EA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:pentium_silver_n6005:-:*:*:*:*:*:*:*",
"matchCriteriaId": "42841FAC-A6EC-44F3-9FCD-B4549A783014",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_bronze_3204:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E687CADE-6E49-4284-BD41-6CA2FDD846FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_bronze_3206r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0A7540F0-7EB8-4F64-AA31-9AF3D79BEC46",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_d1700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D94D7B29-565F-4E62-A958-27FFDDD7399E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_d2700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "594DDCAB-96D4-4999-824E-7597B971B6DC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2278g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63650DBF-4DBD-4655-AE93-5CBE53F8E0FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2278ge:-:*:*:*:*:*:*:*",
"matchCriteriaId": "00912C9C-D386-445E-B390-E96361ECDFA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2278gel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "60B582A1-784C-4BE8-A0D5-706DE01D769E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2286m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "556637E1-9502-41E7-B91D-082C92F233A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2288g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5EA930BC-EF68-4AD5-AA1B-0659358028D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2314:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1A8EA870-2228-4E81-A417-30E040A5C0E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2324g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "656D31B6-1E8D-4A44-9D7A-023051E7050A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2334:-:*:*:*:*:*:*:*",
"matchCriteriaId": "49EEE5AA-3867-4137-B165-5004C34C77B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2336:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2A38417-1DB2-4C85-80D9-D3968BF7A83B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2356g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1F74E9E4-F84C-4B7F-8A42-20EEC60986DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2374g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "74F99F83-A7E6-4AFD-BC42-7348EF6613AA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2378:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5A62A9F4-2B98-4F2D-9143-08D1689E38AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2378g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B8FD06CB-F456-44BD-900B-06131DC68B6B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2386g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9044310E-4DF9-47BA-9D05-C1405DC8CDB2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_e-2388g:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BA881CDA-1C16-43F1-A7D5-69502512A21C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5215:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8DA109ED-BC4D-4F70-81B2-3CE0E2B3D9DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5215l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "070C20AB-66F2-4EE2-8134-5E40DBB9B9E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5217:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9CA49CF7-C6BE-4337-A0A8-A603D8955EE9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9C8F7F6B-847A-479D-B6B1-BBA331D06DE0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218b:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4C375A9D-C7CE-49A6-B08D-9CAB22E16D32",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AF8D06DC-6B8A-4B7B-BB3E-778D432CFEF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E06531E6-126A-4FBB-BEBB-F9023C4738F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5218t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "93B8CDF0-1489-4E4C-B004-A22E06FC10D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5220:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A6ACF161-472E-4088-85C2-5940C9C88D45",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5220r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2E0B94F6-EC15-4C12-8BA5-CC6602A7A725",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5220s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "067C65E5-5392-4DAF-A6BD-640D78C19CE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5220t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A1647DAC-CED6-4DAF-8F82-A42D6D691DF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5222:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D93CC498-F558-4C2F-9E14-7897060CA9FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5315y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6839AE9B-9A8A-4312-80FC-0549C675A815",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5317:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1E0E7358-1EC1-43DA-99B3-A2D6D57E0121",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5318h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "43808CCF-1EF0-41CE-983D-DD6BB775895E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5318n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F2C5D3DE-5506-4F16-B7F9-5032A1277D23",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5318s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ED598260-2A9B-46F7-AA85-0DA97DA0D42D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5318y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "06F1CFD2-8F32-4CE8-9D9B-C65B332775B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5320:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7DD98889-58A1-4A5A-B79A-B2DA9EDA63DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5320h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3BF1F73B-4736-40BC-9053-951B5BF1059E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_5320t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EDA47606-176C-4F6B-A316-4C536B63FA4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6208u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "76D48CFC-1322-4C53-8B53-88E7ACC724BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6209u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5F6456D0-32AE-44A9-9F63-AD64B5E49182",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6210u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "38EA99F9-22C2-47ED-9DDD-928E19C4C51E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6212u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9F8867B2-F297-4D30-AD43-77B0F67FAE3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6222v:-:*:*:*:*:*:*:*",
"matchCriteriaId": "178345A5-9A38-4C8F-B3BB-430276FA4998",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6226:-:*:*:*:*:*:*:*",
"matchCriteriaId": "831A7D63-4638-480C-94CB-ED06613BA75C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6226r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "178D9E36-79EC-4672-8E46-0FD6597CA1CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6230:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EED0D492-ADAB-41ED-A283-024D3CED441F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6230n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2BBB5A97-EA4F-454C-819C-DE1CE7018E7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6230r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D9733E69-E7CF-444C-B72C-AC8E5DEF2449",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6230t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0FD24563-9157-4DE1-95ED-D4E3E879219E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6234:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F83F8602-6679-4B3C-BBDD-3BDB2B317F70",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6238:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3CD3E45C-1943-42BA-9F6D-EA64D67BF954",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6238l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF7B4C84-1258-4F2F-B8A3-55353B3D13BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6238r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9B27F755-4C38-4469-8A9D-C9266BDA53ED",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6238t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0E21977E-7085-46C5-8E89-F952C2EBCE04",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6240:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DB72D13B-5880-4CB2-8E80-CB6A39B5A302",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6240l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "02BCB7D2-4B68-4FF8-BFC9-06C39A708C62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6240r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AAF31FBF-20FB-4B8A-ADE1-E29BB8B8A702",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6240y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7BF7298E-BC07-4C42-8F9C-C3B0CDFC86C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6242:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0C8292CC-DACB-489A-BCB2-73DC2C6F944C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6242r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2D83AEDF-2671-4278-8088-BA517192AB3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6244:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BF72F37A-2F28-40E6-A84B-0E1DF63B1812",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6246:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E8C1742C-96CC-4BCA-928E-D6B53ED2DB0E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6246r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3EAE9CE6-DA95-40B0-AE65-656FA4603D1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6248:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CAD0B5C3-633D-4F2A-8D56-8FA83F1B581C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6248r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5241B3E0-F968-4B16-8BF8-191C6F7B224A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5EFB52DD-5B7D-45BA-B249-A134D1B9EBD3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6250l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B82FC910-F3AB-42BF-9740-EC09F0AC179D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6252:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1BAE2B11-B0F5-415F-BD6B-E285EF9C9095",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6252n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3BA58EFB-7672-4902-ABC1-65217AA617AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6254:-:*:*:*:*:*:*:*",
"matchCriteriaId": "96E2764D-7D6A-4CE0-A628-FFE966A6462F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6256:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1D66D18C-17F2-4259-B1D8-7C63797A024C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6258r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "25C8DFB5-9D8B-4370-849A-DC061910E54F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6262v:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0B704835-1250-44E1-923C-5DE2F4DD25D0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6312u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AF7D9572-8D03-4D54-B0E1-C0A3F3F90FCF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6314u:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE3CA224-B5DE-4451-9CF9-929ABEA242EF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6326:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A3D8E340-AE91-4F29-9F22-E0CE6718FC13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6328h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "710DBCD5-788D-4140-AC16-EC6E126CFA66",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6328hl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A767EC83-AAED-4FEA-A35E-A503369FE4FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6330:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FB1ACDED-85B4-4A11-BD03-8E1B9563B7F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6330h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D6C4A47D-7F66-4ACC-9C69-0A355D46CDC1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6330n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "20821868-F7D2-4132-8D63-98E1089DB46C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6334:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4EB9295A-8832-4670-B268-FBD0BC086447",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6336y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "489BD4AC-50C6-422B-A2B2-00A70E611114",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6338:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C5694238-F4E5-4689-ADD2-67C25762ED92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6338n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A57D44C0-AA8D-46B0-8923-ADB312E3937F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6338t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3A551BBB-76CD-4C26-913F-B02C66E5D846",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6342:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8A4A44F2-68BF-4709-946B-C976DA3A9C7E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6346:-:*:*:*:*:*:*:*",
"matchCriteriaId": "038AC553-5523-4687-843D-6FEA7264EDEA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6348:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8DE5D09C-3272-4810-9F41-97BDBBFE4160",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6348h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "59C5122F-D822-4E71-A417-88EB51F1786B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_gold_6354:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F14C3438-B876-45B9-85F5-61354207AF8A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8253:-:*:*:*:*:*:*:*",
"matchCriteriaId": "94A6DA7A-7C97-40E1-B31A-B92BB658C429",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8256:-:*:*:*:*:*:*:*",
"matchCriteriaId": "54AF128B-9984-4C91-B7F6-968DE376C3BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8260:-:*:*:*:*:*:*:*",
"matchCriteriaId": "28B167F1-63FA-4C86-84AB-836ABF84E6E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8260l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "955420F9-3A3F-40E0-9940-DD43C5C78D62",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8260y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BC4A437C-6C00-4729-91CC-D27EB3542633",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8268:-:*:*:*:*:*:*:*",
"matchCriteriaId": "74ED727D-B1A9-4F4B-92C7-3F00F3A80013",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8270:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2C24951-B3FA-48E6-AFAC-6CA0D2348230",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8276:-:*:*:*:*:*:*:*",
"matchCriteriaId": "185E8FBC-9EE9-472E-867B-0B0DEEECA13E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8276l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AB3C00A0-C28A-46EB-853D-DAE3819399D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8280:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0951DB50-AC8E-4C17-A2A9-DD4A198C4DD2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8280l:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E0CAB607-87B2-49F4-9FAB-662D5EA3D11C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8351n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D7C504C3-7EEE-4A0F-8589-19C1E806E690",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8352m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5230F6AF-88CB-4EE2-B292-8B9A7217D10F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8352s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5B45C39D-03E8-46C1-88DD-94E382F4A961",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8352v:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EF2DC691-025A-441E-AAC2-C8583F54733D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8352y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E8FB7EE6-6808-4879-A0A3-E85FE5CB37CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8353h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EBE07EA7-4CDF-4038-A948-6AC126C7F6AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8354h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "06A2241C-37AE-41AE-A8D1-D9AB18CCE16D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8356h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BB6DEAA1-3209-4B49-B931-43E8C1C5BE14",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8358:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CCE086F8-5C8B-4F0C-B53A-76BD4E67B678",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8358p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "00B21B5C-0FDE-4A8E-A9FC-5CF822A74B20",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8360h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB15368B-21A1-429E-8B9C-A095C4E8BA67",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8360hl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BA925F96-6DDD-4F71-BF13-710C8A89D860",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8360y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E41414A-6B0B-4511-A9A1-7FF99DD25DB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8362:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91EB66B4-8F1B-4F35-9371-17FB761997CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8368:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CBDFD1AF-2716-4C95-ADFF-79EFA915C286",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8368q:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5390A12B-80BD-4889-BF0F-95E65D10D037",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8376h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C1D6444A-B9CF-4D70-A8A9-E6B57B6F13DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8376hl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "05637A96-AF09-4FF5-A918-AB369AA2D1CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8380:-:*:*:*:*:*:*:*",
"matchCriteriaId": "33FA0279-D587-471E-8EC0-211F78DA4DFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8380h:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D1CC27DB-11D4-412A-BC69-CF32A0CABCF8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_8380hl:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E8FE9694-F0E7-4B45-82A1-065DA96B9794",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_9221:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DBC93757-5FD7-403D-B5ED-CC8793002352",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_9222:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0A7019D4-58E0-4B73-93B8-D3B0E86BF2D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_9242:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6DF8D8C4-29EA-4D09-87AB-A570403BA0E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_platinum_9282:-:*:*:*:*:*:*:*",
"matchCriteriaId": "89421EC5-52E5-441F-AD3B-5C5E964F836D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4208:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FA909754-B60A-4B30-AF42-4C8734E155AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4209t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EBEFB056-0872-434B-9630-28A1AAEAD470",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4210:-:*:*:*:*:*:*:*",
"matchCriteriaId": "21A62CB9-FB01-45CB-9E10-E72D87C0E1F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4210r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CD8EBFCC-AD76-4285-93BD-D14219C6EA5D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4210t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7FF7E334-6DC7-44B5-A102-649A68300C80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4214:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E1B4F7FE-61A3-417A-BAA9-E686A76F3A94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4214r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9DE4C87E-CB23-4804-9BBD-2533C5E1D6D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4214y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7305838B-84CA-4BB8-A350-B2D2844F1041",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4215:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D356D196-8AB0-4387-A644-C5E68174A60C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4215r:-:*:*:*:*:*:*:*",
"matchCriteriaId": "89587A92-6234-40C3-83DB-F72319FFBC79",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4216:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4F50C03E-CBEB-4738-BDF4-DC296CE9DFA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4309y:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB267830-FA6E-4C2E-8BBE-C3DA12A6A33D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4310:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D557D68C-8279-4BFD-9EA6-17A83754B8FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4310t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7ECA0BC9-1CA4-4B95-B98F-9098B2550309",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4314:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1298CF87-124D-450B-928D-F39CCA2BAF42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_silver_4316:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AF12820F-A2BE-44BF-A85D-7F4623898DAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-10855:-:*:*:*:*:*:*:*",
"matchCriteriaId": "65A473FF-F3AD-41F5-B63A-3D6DDB0BD216",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-10855m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "853DE44A-84C9-4959-865F-D538DF895647",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-10885m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "13326C69-C160-482F-BF28-5425B57BE738",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11155mle:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1F15EF0E-37CF-4944-8B6B-A82B4348CDC0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11155mre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "92D12220-840B-4397-889C-9649F34B7E25",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11555mle:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6AB926B2-077B-4752-80EC-D39446115FCD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11555mre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C8C1D750-1FE9-40F8-BCB9-77D13C13906C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11855m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D07040D2-2ADC-4CC4-860F-74A7C64FD6FB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11865mld:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5D2ED18E-241E-4154-9793-FB0E60F9C00F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11865mre:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D59D80E8-5A2C-402F-8AE3-766ECEDA14F3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-11955m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8F66D2E5-BD5B-406D-82A0-4E1E32EDC337",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "557E240A-6760-434E-9C3A-1E5E9129912D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1250p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6B7565F3-5D41-4A1F-948B-1A55E3AD3EF8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1270:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C71A52C1-1FBF-4730-8234-700F87D5E74D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1270p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7B930DF9-C425-41AF-9736-0BD611C79CA7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9DF260A0-CDD8-4EE1-B3F4-73CD02FDCD11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290e:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5B84F7DC-EE67-4748-8AE2-7070A6F79BAD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7C156433-48A3-4B2E-A8DB-AF1F09B2EFA6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D78A1CFF-F05E-429C-A9AA-935078574A3B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1290te:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FE28AD41-2287-4F2B-924C-30B66A320443",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CE3A7AD3-D7D4-40A5-B1B6-A818B5ACE6D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1350:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E31FFECA-F663-4B59-9800-1C6A8BD84626",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1350p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E3F194D4-9425-470E-B812-CD92B5C5A68A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1370:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6E426811-F97D-42CE-B06D-41CDA84E1B55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1370p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4F5F5950-C21F-4142-BA1E-E074FAF249F5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1390:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E2BC8A89-4CF3-473B-9251-9FA5FF8ADBD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1390p:-:*:*:*:*:*:*:*",
"matchCriteriaId": "30EE6B10-84FC-4D9D-8F39-4B7000CC85AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-1390t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5AFDA5D5-F00F-40CC-B492-C433200A491C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2223:-:*:*:*:*:*:*:*",
"matchCriteriaId": "708D6E00-A2E5-4B08-88E7-C872ACFC341D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2225:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0CD8EE0E-2BA3-49DD-91D1-81AB67F16475",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2235:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AC75E5CF-4241-45A8-AD45-1F7F077CEEA1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2245:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D132291B-AADD-49E3-ADD6-333E1F1D8DFE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2255:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2ADF328B-D286-4C36-9F21-11A58D55D03A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2265:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C6D23470-A702-426D-A63C-4F7BAC158762",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2275:-:*:*:*:*:*:*:*",
"matchCriteriaId": "750A77C5-1367-4E04-9ABF-1AB2D46C29C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-2295:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D1340A29-3428-4FAD-AA07-7F625915E34D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3223:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ADA1FA19-A836-4D6A-8C2D-718ECE6866D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3225:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3ECEBDB0-2E0A-416B-9737-82C1FC65A06C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3235:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C39B6A99-7060-4011-8FA3-E5ABE5C02813",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3245:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DF9E723E-1095-424E-A90D-380CA0D2795E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3245m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "35380FB9-90FF-405F-8E2E-01C1DD209540",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3265:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2215D655-0EA9-4530-AB68-7B1C7360D692",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3265m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "020B6FED-EAE2-478C-8FF4-CB75F24E9A9D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3275:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AE519C62-F5BB-461C-91EF-2979CD506C63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:h:intel:xeon_w-3275m:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F693457C-3529-4E62-A672-1B862F235D0F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "6EDB6772-7FDB-45FF-8D72-952902A7EE56",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9955F62A-75D3-4347-9AD3-5947FC365838",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7A6D77C7-A2F4-4700-AB5A-3EC853496ECA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access."
},
{
"lang": "es",
"value": "La compartici\u00f3n no transparente de selectores de predicci\u00f3n de rama entre contextos en algunos procesadores Intel(R) puede permitir que un usuario autorizado permita potencialmente una divulgaci\u00f3n de informaci\u00f3n por medio del acceso local"
}
],
"id": "CVE-2022-0001",
"lastModified": "2024-04-09T15:15:26.797",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.0,
"impactScore": 4.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-03-11T18:15:25.143",
"references": [
{
"source": "secure@intel.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2022/03/18/2"
},
{
"source": "secure@intel.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220818-0004/"
},
{
"source": "secure@intel.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html"
},
{
"source": "secure@intel.com",
"url": "https://www.kb.cert.org/vuls/id/155143"
},
{
"source": "secure@intel.com",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
}
],
"sourceIdentifier": "secure@intel.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
}
}
}
ICSA-23-075-01
Vulnerability from csaf_cisa - Published: 2023-03-14 00:00 - Updated: 2023-03-14 00:00Summary
Siemens SCALANCE, RUGGEDCOM Third-Party
Notes
Summary: Multiple third-party component vulnerabilities were reported for the Busybox applet, the Linux Kernel, OpenSSL, OpenVPN and various other components used by the RUGGEDCOM and SCALANCE products. The vulnerabilities range from improper neutralization of special elements to improper handling of commands under certain circumstances, that could lead to code injection and denial of service.
Siemens has released updates for the affected products and recommends to update to the latest versions.
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Advisory Conversion Disclaimer: This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.
Critical infrastructure sectors: Multiple
Countries/areas deployed: Worldwide
Company headquarters location: Germany
Recommended Practices: CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.
Recommended Practices: Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolate them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
CWE-787
- Out-of-bounds Write
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-200
- Exposure of Sensitive Information to an Unauthorized Actor
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-787
- Out-of-bounds Write
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-667
- Improper Locking
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-20
- Improper Input Validation
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-476
- NULL Pointer Dereference
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-125
- Out-of-bounds Read
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-20
- Improper Input Validation
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-476
- NULL Pointer Dereference
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-763
- Release of Invalid Pointer or Reference
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-20
- Improper Input Validation
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-20
- Improper Input Validation
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-200
- Exposure of Sensitive Information to an Unauthorized Actor
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
9.8 (Critical)
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
9.8 (Critical)
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-787
- Out-of-bounds Write
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-295
- Improper Certificate Validation
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-200
- Exposure of Sensitive Information to an Unauthorized Actor
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-404
- Improper Resource Shutdown or Release
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-248
- Uncaught Exception
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-787
- Out-of-bounds Write
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-20
- Improper Input Validation
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-191
- Integer Underflow (Wrap or Wraparound)
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-362
- Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-120
- Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-20
- Improper Input Validation
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-415
- Double Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-863
- Incorrect Authorization
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-770
- Allocation of Resources Without Limits or Throttling
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-770
- Allocation of Resources Without Limits or Throttling
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
9.8 (Critical)
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-787
- Out-of-bounds Write
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-203
- Observable Discrepancy
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-120
- Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-416
- Use After Free
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-1286
- Improper Validation of Syntactic Correctness of Input
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-20
- Improper Input Validation
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
CWE-20
- Improper Input Validation
Affected products
Known affected
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens / SCALANCE M876-4 (6GK5876-4AA10-2BA2)
|
6GK5876-4AA10-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.2 |
Vendor Fix
fix
|
|
SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
Siemens / SCALANCE S615 EEC (6GK5615-0AA01-2AA2)
|
6GK5615-0AA01-2AA2
|
<V7.2 |
Vendor Fix
fix
|
References
11 references
| URL | Category |
|---|---|
| https://cert-portal.siemens.com/productcert/csaf/… | self |
| https://cert-portal.siemens.com/productcert/txt/s… | self |
| https://cert-portal.siemens.com/productcert/pdf/s… | self |
| https://raw.githubusercontent.com/cisagov/CSAF/de… | self |
| https://www.cisa.gov/news-events/ics-advisories/i… | self |
| https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-… | external |
| https://www.cisa.gov/resources-tools/resources/ic… | external |
| https://www.cisa.gov/topics/industrial-control-systems | external |
| https://us-cert.cisa.gov/sites/default/files/reco… | external |
| https://www.cisa.gov/sites/default/files/publicat… | external |
| https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B | external |
Acknowledgments
Siemens ProductCERT
{
"document": {
"acknowledgments": [
{
"organization": "Siemens ProductCERT",
"summary": "reporting these vulnerabilities to CISA."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"notes": [
{
"category": "summary",
"text": "Multiple third-party component vulnerabilities were reported for the Busybox applet, the Linux Kernel, OpenSSL, OpenVPN and various other components used by the RUGGEDCOM and SCALANCE products. The vulnerabilities range from improper neutralization of special elements to improper handling of commands under certain circumstances, that could lead to code injection and denial of service.\n\nSiemens has released updates for the affected products and recommends to update to the latest versions.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
"title": "Terms of Use"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "other",
"text": "This CISA CSAF advisory was converted from Siemens ProductCERT\u0027s CSAF advisory.",
"title": "Advisory Conversion Disclaimer"
},
{
"category": "other",
"text": "Multiple",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "other",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "SSA-419740: Multiple\tThird-Party Component Vulnerabilities in RUGGEDCOM and SCALANCE Products before V7.2 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-419740.json"
},
{
"category": "self",
"summary": "SSA-419740: Multiple\tThird-Party Component Vulnerabilities in RUGGEDCOM and SCALANCE Products before V7.2 - TXT Version",
"url": "https://cert-portal.siemens.com/productcert/txt/ssa-419740.txt"
},
{
"category": "self",
"summary": "SSA-419740: Multiple\tThird-Party Component Vulnerabilities in RUGGEDCOM and SCALANCE Products before V7.2 - PDF Version",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-419740.pdf"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-23-075-01 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2023/icsa-23-075-01.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-23-075-01 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-075-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Siemens SCALANCE, RUGGEDCOM Third-Party",
"tracking": {
"current_release_date": "2023-03-14T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-23-075-01",
"initial_release_date": "2023-03-14T00:00:00.000000Z",
"revision_history": [
{
"date": "2023-03-14T00:00:00.000000Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)",
"product_id": "CSAFPID-0001",
"product_identification_helper": {
"model_numbers": [
"6GK6108-4AM00-2BA2"
]
}
}
}
],
"category": "product_name",
"name": "RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)",
"product_id": "CSAFPID-0002",
"product_identification_helper": {
"model_numbers": [
"6GK6108-4AM00-2DA2"
]
}
}
}
],
"category": "product_name",
"name": "RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M804PB (6GK5804-0AP00-2AA2)",
"product_id": "CSAFPID-0003",
"product_identification_helper": {
"model_numbers": [
"6GK5804-0AP00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M804PB (6GK5804-0AP00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)",
"product_id": "CSAFPID-0004",
"product_identification_helper": {
"model_numbers": [
"6GK5812-1AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M812-1 ADSL-Router (Annex A) (6GK5812-1AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)",
"product_id": "CSAFPID-0005",
"product_identification_helper": {
"model_numbers": [
"6GK5812-1BA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M812-1 ADSL-Router (Annex B) (6GK5812-1BA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)",
"product_id": "CSAFPID-0006",
"product_identification_helper": {
"model_numbers": [
"6GK5816-1AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M816-1 ADSL-Router (Annex A) (6GK5816-1AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)",
"product_id": "CSAFPID-0007",
"product_identification_helper": {
"model_numbers": [
"6GK5816-1BA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M816-1 ADSL-Router (Annex B) (6GK5816-1BA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)",
"product_id": "CSAFPID-0008",
"product_identification_helper": {
"model_numbers": [
"6GK5826-2AB00-2AB2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M874-2 (6GK5874-2AA00-2AA2)",
"product_id": "CSAFPID-0009",
"product_identification_helper": {
"model_numbers": [
"6GK5874-2AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M874-2 (6GK5874-2AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M874-3 (6GK5874-3AA00-2AA2)",
"product_id": "CSAFPID-0010",
"product_identification_helper": {
"model_numbers": [
"6GK5874-3AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M874-3 (6GK5874-3AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)",
"product_id": "CSAFPID-0011",
"product_identification_helper": {
"model_numbers": [
"6GK5876-3AA02-2BA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M876-3 (EVDO) (6GK5876-3AA02-2BA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)",
"product_id": "CSAFPID-0012",
"product_identification_helper": {
"model_numbers": [
"6GK5876-3AA02-2EA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M876-4 (6GK5876-4AA10-2BA2)",
"product_id": "CSAFPID-0013",
"product_identification_helper": {
"model_numbers": [
"6GK5876-4AA10-2BA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M876-4 (6GK5876-4AA10-2BA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)",
"product_id": "CSAFPID-0014",
"product_identification_helper": {
"model_numbers": [
"6GK5876-4AA00-2BA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)",
"product_id": "CSAFPID-0015",
"product_identification_helper": {
"model_numbers": [
"6GK5876-4AA00-2DA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)",
"product_id": "CSAFPID-0016",
"product_identification_helper": {
"model_numbers": [
"6GK5853-2EA00-2DA1"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)",
"product_id": "CSAFPID-0017",
"product_identification_helper": {
"model_numbers": [
"6GK5856-2EA00-3DA1"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)",
"product_id": "CSAFPID-0018",
"product_identification_helper": {
"model_numbers": [
"6GK5856-2EA00-3AA1"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE S615 (6GK5615-0AA00-2AA2)",
"product_id": "CSAFPID-0019",
"product_identification_helper": {
"model_numbers": [
"6GK5615-0AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE S615 (6GK5615-0AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.2",
"product": {
"name": "SCALANCE S615 EEC (6GK5615-0AA01-2AA2)",
"product_id": "CSAFPID-0020",
"product_identification_helper": {
"model_numbers": [
"6GK5615-0AA01-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE S615 EEC (6GK5615-0AA01-2AA2)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-25032",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2018-25032"
},
{
"cve": "CVE-2019-1125",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "summary",
"text": "An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory, aka \u0027Windows Kernel Information Disclosure Vulnerability\u0027. This CVE ID is unique from CVE-2019-1071, CVE-2019-1073.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2019-1125"
},
{
"cve": "CVE-2021-4034",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "A local privilege escalation vulnerability was found on polkit\u0027s pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn\u0027t handle the calling parameters count correctly and ends trying to execute environment variables as commands. An attacker can leverage this by crafting environment variables in such a way it\u0027ll induce pkexec to execute arbitrary code. When successfully executed the attack can cause a local privilege escalation given unprivileged users administrative rights on the target machine.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-4034"
},
{
"cve": "CVE-2021-4149",
"cwe": {
"id": "CWE-667",
"name": "Improper Locking"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability was found in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c in the Linux kernel due to an improper lock operation in btrfs. In this flaw, a user with a local privilege may cause a denial of service (DOS) due to a deadlock problem.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-4149"
},
{
"cve": "CVE-2021-26401",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-26401"
},
{
"cve": "CVE-2021-42373",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "A NULL pointer dereference in Busybox\u0027s man applet leads to denial of service when a section name is supplied but no page argument is given.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42373"
},
{
"cve": "CVE-2021-42374",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds heap read in Busybox\u0027s unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is decompressed. This can be triggered by any applet/format that internally supports LZMA compression.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42374"
},
{
"cve": "CVE-2021-42375",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An incorrect handling of a special element in Busybox\u0027s ash applet leads to denial of service when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters. This may be used for DoS under rare conditions of filtered command input.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42375"
},
{
"cve": "CVE-2021-42376",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "A NULL pointer dereference in Busybox\u0027s hush applet leads to denial of service when processing a crafted shell command, due to missing validation after a \\x03 delimiter character. This may be used for DoS under very rare conditions of filtered command input.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42376"
},
{
"cve": "CVE-2021-42377",
"cwe": {
"id": "CWE-763",
"name": "Release of Invalid Pointer or Reference"
},
"notes": [
{
"category": "summary",
"text": "An attacker-controlled pointer free in Busybox\u0027s hush applet leads to denial of service and possible code execution when processing a crafted shell command, due to the shell mishandling the \u0026\u0026\u0026 string. This may be used for remote code execution under rare conditions of filtered command input.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42377"
},
{
"cve": "CVE-2021-42378",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in Busybox\u0027s awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_i function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42378"
},
{
"cve": "CVE-2021-42379",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in Busybox\u0027s awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the next_input_file function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42379"
},
{
"cve": "CVE-2021-42380",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in awk leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42380"
},
{
"cve": "CVE-2021-42381",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in awk leads to denial of service and possibly code execution when processing a crafted awk pattern in the hash_init function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42381"
},
{
"cve": "CVE-2021-42382",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in awk leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_s function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42382"
},
{
"cve": "CVE-2021-42383",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in awk leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42383"
},
{
"cve": "CVE-2021-42384",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in Busybox\u0027s awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42384"
},
{
"cve": "CVE-2021-42385",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in awk leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42385"
},
{
"cve": "CVE-2021-42386",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in awk leads to denial of service and possibly code execution when processing a crafted awk pattern in the nvalloc function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2021-42386"
},
{
"cve": "CVE-2022-0001",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-0001"
},
{
"cve": "CVE-2022-0002",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-0002"
},
{
"cve": "CVE-2022-0494",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "summary",
"text": "A kernel information leak flaw was identified in the scsi_ioctl function in drivers/scsi/scsi_ioctl.c in the Linux kernel. This flaw allows a local attacker with a special user privilege (CAP_SYS_ADMIN or CAP_SYS_RAWIO) to create issues with confidentiality.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-0494"
},
{
"cve": "CVE-2022-0547",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "summary",
"text": "OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass in external authentication plug-ins when more than one of them makes use of deferred authentication replies, which allows an external user to be granted access with only partially correct credentials.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-0547"
},
{
"cve": "CVE-2022-1011",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free flaw was found in the Linux kernel\u2019s FUSE filesystem in the way a user triggers write(). This flaw allows a local user to gain unauthorized access to data from the FUSE filesystem, resulting in privilege escalation.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1011"
},
{
"cve": "CVE-2022-1016",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle \u0027return\u0027 with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1016"
},
{
"cve": "CVE-2022-1198",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free vulnerabilitity was discovered in drivers/net/hamradio/6pack.c of linux that allows an attacker to crash linux kernel by simulating ax25 device using 6pack driver from user space.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1198"
},
{
"cve": "CVE-2022-1199",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1199"
},
{
"cve": "CVE-2022-1292",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The c_rehash script does not properly sanitise shell metacharacters to prevent command injection.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1292"
},
{
"cve": "CVE-2022-1304",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1304"
},
{
"cve": "CVE-2022-1343",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "Under certain circumstances, the command line OCSP verify function reports successful verification when the varification in fact failed. In this case the incorrect successful response will also be accompanied by error messages showing the failure and contradicting the apparently successful result.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1343"
},
{
"cve": "CVE-2022-1353",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unprivileged user to gain access to kernel memory, leading to a system crash or a leak of internal kernel information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1353"
},
{
"cve": "CVE-2022-1473",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "summary",
"text": "The used OpenSSL version improperly reuses memory when decoding certificates or keys. This can lead to a process termination and Denial of Service for long lived processes.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1473"
},
{
"cve": "CVE-2022-1516",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A NULL pointer dereference flaw was found in the Linux kernel\u2019s X.25 set of standardized network protocols functionality in the way a user terminates their session using a simulated Ethernet card and continued usage of this connection. This flaw allows a local user to crash the system.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1516"
},
{
"cve": "CVE-2022-1652",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function. By executing a specially-crafted program, an attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service condition on the system.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1652"
},
{
"cve": "CVE-2022-1729",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1729"
},
{
"cve": "CVE-2022-1734",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A flaw in Linux Kernel found in nfcmrvl_nci_unregister_dev() in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between cleanup routine and firmware download routine.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1734"
},
{
"cve": "CVE-2022-1974",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free flaw was found in the Linux kernel\u0027s NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAP_NET_ADMIN privilege to leak kernel information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1974"
},
{
"cve": "CVE-2022-1975",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"notes": [
{
"category": "summary",
"text": "There is a sleep-in-atomic bug in /net/nfc/netlink.c that allows an attacker to crash the Linux kernel by simulating a nfc device from user-space.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-1975"
},
{
"cve": "CVE-2022-2380",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "The Linux kernel was found vulnerable out of bounds memory access in the drivers/video/fbdev/sm712fb.c:smtcfb_read() function. The vulnerability could result in local attackers being able to crash the kernel.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-2380"
},
{
"cve": "CVE-2022-2588",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-2588"
},
{
"cve": "CVE-2022-2639",
"cwe": {
"id": "CWE-191",
"name": "Integer Underflow (Wrap or Wraparound)"
},
"notes": [
{
"category": "summary",
"text": "An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reserve_sfa_size() function does not return -EMSGSIZE as expected, potentially leading to an out-of-bounds write access. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-2639"
},
{
"cve": "CVE-2022-20158",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In bdi_put and bdi_unregister of backing-dev.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-182815710References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-20158"
},
{
"cve": "CVE-2022-23036",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Linux PV device frontends vulnerable to attacks by backends [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-23036"
},
{
"cve": "CVE-2022-23037",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Linux PV device frontends vulnerable to attacks by backends [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-23037"
},
{
"cve": "CVE-2022-23038",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Linux PV device frontends vulnerable to attacks by backends [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-23038"
},
{
"cve": "CVE-2022-23039",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Linux PV device frontends vulnerable to attacks by backends [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-23039"
},
{
"cve": "CVE-2022-23040",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Linux PV device frontends vulnerable to attacks by backends [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-23040"
},
{
"cve": "CVE-2022-23041",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Linux PV device frontends vulnerable to attacks by backends [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-23041"
},
{
"cve": "CVE-2022-23042",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Linux PV device frontends vulnerable to attacks by backends [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-23042"
},
{
"cve": "CVE-2022-23308",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-23308"
},
{
"cve": "CVE-2022-26490",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "summary",
"text": "st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-26490"
},
{
"cve": "CVE-2022-28356",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In the Linux kernel before 5.17.1, a refcount leak bug was found in net/llc/af_llc.c.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-28356"
},
{
"cve": "CVE-2022-28390",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "summary",
"text": "ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-28390"
},
{
"cve": "CVE-2022-30065",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use-after-free in Busybox 1.35-x\u0027s awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-30065"
},
{
"cve": "CVE-2022-30594",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"notes": [
{
"category": "summary",
"text": "The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-30594"
},
{
"cve": "CVE-2022-32205",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "summary",
"text": "A malicious server can serve excessive amounts of \"Set-Cookie:\" headers in a HTTP response to curl and curl \u003c 7.84.0 stores all of them. A sufficiently large amount of (big) cookies make subsequent HTTP requests to this, or other servers to which the cookies match, create requests that become larger than the threshold that curl uses internally to avoid sending crazy large requests (1048576 bytes) and instead returns an error.This denial state might remain for as long as the same cookies are kept, match and haven\u0027t expired. Due to cookie matching rules, a server on \"foo.example.com\" can set cookies that also would match for \"bar.example.com\", making it it possible for a \"sister server\" to effectively cause a denial of service for a sibling site on the same second level domain using this method.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-32205"
},
{
"cve": "CVE-2022-32206",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "summary",
"text": "curl \u003c 7.84.0 supports \"chained\" HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with different algorithms. The number of acceptable \"links\" in this \"decompression chain\" was unbounded, allowing a malicious server to insert a virtually unlimited number of compression steps.The use of such a decompression chain could result in a \"malloc bomb\", makingcurl end up spending enormous amounts of allocated heap memory, or trying toand returning out of memory errors.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-32206"
},
{
"cve": "CVE-2022-32207",
"cwe": {
"id": "CWE-276",
"name": "Incorrect Default Permissions"
},
"notes": [
{
"category": "summary",
"text": "When curl \u003c 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation, it might accidentally *widen* the permissions for the target file, leaving the updated file accessible to more users than intended.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-32207"
},
{
"cve": "CVE-2022-32208",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "When curl \u003c 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. This flaw makes it possible for a Man-In-The-Middle attack to go unnoticed and even allows it to inject data to the client.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-32208"
},
{
"cve": "CVE-2022-32296",
"cwe": {
"id": "CWE-203",
"name": "Observable Discrepancy"
},
"notes": [
{
"category": "summary",
"text": "The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. This occurs because of use of Algorithm 4 (\"Double-Hash Port Selection Algorithm\") of RFC 6056.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-32296"
},
{
"cve": "CVE-2022-32981",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in the Linux kernel through 5.18.3 on powerpc 32-bit platforms. There is a buffer overflow in ptrace PEEKUSER and POKEUSER (aka PEEKUSR and POKEUSR) when accessing floating point registers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-32981"
},
{
"cve": "CVE-2022-33981",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-33981"
},
{
"cve": "CVE-2022-35252",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"notes": [
{
"category": "summary",
"text": "When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing a\"sister site\" to deny service to all siblings.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-35252"
},
{
"cve": "CVE-2022-36879",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-36879"
},
{
"cve": "CVE-2022-36946",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negative skb-\u003elen.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V7.2 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/document/109817007/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020"
]
}
],
"title": "CVE-2022-36946"
}
]
}
OPENSUSE-SU-2022:0755-1
Vulnerability from csaf_opensuse - Published: 2022-03-08 18:02 - Updated: 2022-03-08 18:02Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch: The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes.
Transient execution side-channel attacks attacking the Branch History Buffer (BHB),
named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated.
The following security bugs were fixed:
- CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584).
- CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580).
- CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580).
- CVE-2022-25375: The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory (bsc#1196235).
- CVE-2022-0516: Fixed missing check in ioctl related to KVM in s390 allows kernel memory read/write (bsc#1195516).
- CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543).
The following non-security bugs were fixed:
- ACPI/IORT: Check node revision for PMCG resources (git-fixes).
- ALSA: hda/realtek: Add missing fixup-model entry for Gigabyte X570 ALC1220 quirks (git-fixes).
- ALSA: hda/realtek: Add quirk for ASUS GU603 (git-fixes).
- ALSA: hda/realtek: Fix silent output on Gigabyte X570 Aorus Xtreme after reboot from Windows (git-fixes).
- ALSA: hda/realtek: Fix silent output on Gigabyte X570S Aorus Master (newer chipset) (git-fixes).
- ALSA: hda: Fix missing codec probe on Shenker Dock 15 (git-fixes).
- ALSA: hda: Fix regression on forced probe mask option (git-fixes).
- ALSA: usb-audio: Correct quirk for VF0770 (git-fixes).
- ALSA: usb-audio: initialize variables that could ignore errors (git-fixes).
- ASoC: Revert 'ASoC: mediatek: Check for error clk pointer' (git-fixes).
- ASoC: cpcap: Check for NULL pointer after calling of_get_child_by_name (git-fixes).
- ASoC: fsl: Add missing error handling in pcm030_fabric_probe (git-fixes).
- ASoC: max9759: fix underflow in speaker_gain_control_put() (git-fixes).
- ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw() (git-fixes).
- ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_range() (git-fixes).
- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() (git-fixes).
- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() (git-fixes).
- ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() (git-fixes).
- ASoC: xilinx: xlnx_formatter_pcm: Make buffer bytes multiple of period bytes (git-fixes).
- Align s390 NVME target options with other architectures (bsc#1188404, jsc#SLE-22494).
- Bluetooth: refactor malicious adv data check (git-fixes).
- EDAC/xgene: Fix deferred probing (bsc#1178134).
- HID:Add support for UGTABLET WP5540 (git-fixes).
- IB/cm: Avoid a loop when device has 255 ports (git-fixes)
- IB/cma: Do not send IGMP leaves for sendonly Multicast groups (git-fixes).
- IB/hfi1: Fix AIP early init panic (jsc#SLE-13208).
- IB/hfi1: Fix error return code in parse_platform_config() (git-fixes)
- IB/hfi1: Use kzalloc() for mmu_rb_handler allocation (git-fixes)
- IB/isert: Fix a use after free in isert_connect_request (git-fixes)
- IB/mlx4: Separate tunnel and wire bufs parameters (git-fixes)
- IB/mlx5: Add missing error code (git-fixes)
- IB/mlx5: Add mutex destroy call to cap_mask_mutex mutex (git-fixes)
- IB/mlx5: Fix error unwinding when set_has_smi_cap fails (git-fixes)
- IB/mlx5: Return appropriate error code instead of ENOMEM (git-fixes)
- IB/umad: Return EIO in case of when device disassociated (git-fixes)
- IB/umad: Return EPOLLERR in case of when device disassociated (git-fixes)
- Input: wm97xx: Simplify resource management (git-fixes).
- KVM: remember position in kvm->vcpus array (bsc#1190972 LTC#194674).
- NFS: Ensure the server had an up to date ctime before renaming (git-fixes).
- NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1195957).
- NFSv4: Handle case where the lookup of a directory fails (git-fixes).
- NFSv4: nfs_atomic_open() can race when looking up a non-regular file (git-fixes).
- PM: hibernate: Remove register_nosave_region_late() (git-fixes).
- PM: s2idle: ACPI: Fix wakeup interrupts handling (git-fixes).
- PM: wakeup: simplify the output logic of pm_show_wakelocks() (git-fixes).
- RDMA/addr: Be strict with gid size (git-fixes)
- RDMA/bnxt_re: Fix a double free in bnxt_qplib_alloc_res (git-fixes)
- RDMA/bnxt_re: Fix error return code in bnxt_qplib_cq_process_terminal() (git-fixes)
- RDMA/bnxt_re: Set queue pair state when being queried (git-fixes)
- RDMA/cm: Fix an attempt to use non-valid pointer when cleaning timewait (git-fixes)
- RDMA/cma: Use correct address when leaving multicast group (bsc#1181147).
- RDMA/core: Always release restrack object (git-fixes)
- RDMA/core: Do not access cm_id after its destruction (git-fixes)
- RDMA/core: Do not indicate device ready when device enablement fails (git-fixes)
- RDMA/core: Fix corrupted SL on passive side (git-fixes)
- RDMA/core: Unify RoCE check and re-factor code (git-fixes)
- RDMA/cxgb4: Fix adapter LE hash errors while destroying ipv6 listening server (git-fixes)
- RDMA/cxgb4: Fix the reported max_recv_sge value (git-fixes)
- RDMA/cxgb4: Validate the number of CQEs (git-fixes)
- RDMA/cxgb4: add missing qpid increment (git-fixes)
- RDMA/cxgb4: check for ipv6 address properly while destroying listener (git-fixes)
- RDMA/hns: Add a check for current state before modifying QP (git-fixes)
- RDMA/hns: Remove the portn field in UD SQ WQE (git-fixes)
- RDMA/hns: Remove unnecessary access right set during INIT2INIT (git-fixes)
- RDMA/i40iw: Address an mmap handler exploit in i40iw (git-fixes)
- RDMA/i40iw: Fix error unwinding when i40iw_hmc_sd_one fails (git-fixes)
- RDMA/mlx5: Fix corruption of reg_pages in mlx5_ib_rereg_user_mr() (git-fixes)
- RDMA/mlx5: Fix potential race between destroy and CQE poll (git-fixes)
- RDMA/mlx5: Fix query DCT via DEVX (git-fixes)
- RDMA/mlx5: Fix type warning of sizeof in __mlx5_ib_alloc_counters() (git-fixes)
- RDMA/mlx5: Fix wrong free of blue flame register on error (git-fixes)
- RDMA/mlx5: Issue FW command to destroy SRQ on reentry (git-fixes)
- RDMA/mlx5: Recover from fatal event in dual port mode (git-fixes)
- RDMA/mlx5: Use the correct obj_id upon DEVX TIR creation (git-fixes)
- RDMA/ocrdma: Fix use after free in ocrdma_dealloc_ucontext_pd() (git-fixes)
- RDMA/rxe: Clear all QP fields if creation failed (git-fixes)
- RDMA/rxe: Compute PSN windows correctly (git-fixes)
- RDMA/rxe: Correct skb on loopback path (git-fixes)
- RDMA/rxe: Fix coding error in rxe_rcv_mcast_pkt (git-fixes)
- RDMA/rxe: Fix coding error in rxe_recv.c (git-fixes)
- RDMA/rxe: Fix missing kconfig dependency on CRYPTO (git-fixes)
- RDMA/rxe: Remove useless code in rxe_recv.c (git-fixes)
- RDMA/siw: Fix a use after free in siw_alloc_mr (git-fixes)
- RDMA/siw: Fix calculation of tx_valid_cpus size (git-fixes)
- RDMA/siw: Fix handling of zero-sized Read and Receive Queues. (git-fixes)
- RDMA/siw: Properly check send and receive CQ pointers (git-fixes)
- RDMA/siw: Release xarray entry (git-fixes)
- RDMA/ucma: Protect mc during concurrent multicast leaves (bsc#1181147).
- RDMA/usnic: Fix memleak in find_free_vf_and_create_qp_grp (git-fixes)
- RDMA/uverbs: Fix a NULL vs IS_ERR() bug (git-fixes)
- RDMA/uverbs: Tidy input validation of ib_uverbs_rereg_mr() (git-fixes)
- RMDA/sw: Do not allow drivers using dma_virt_ops on highmem configs (git-fixes)
- USB: core: Fix hang in usb_kill_urb by adding memory barriers (git-fixes).
- USB: serial: ch341: add support for GW Instek USB2.0-Serial devices (git-fixes).
- USB: serial: cp210x: add CPI Bulk Coin Recycler id (git-fixes).
- USB: serial: cp210x: add NCR Retail IO box id (git-fixes).
- USB: serial: ftdi_sio: add support for Brainboxes US-159/235/320 (git-fixes).
- USB: serial: mos7840: fix probe error handling (git-fixes).
- USB: serial: mos7840: remove duplicated 0xac24 device ID (git-fixes).
- USB: serial: option: add ZTE MF286D modem (git-fixes).
- ata: libata-core: Disable TRIM on M88V29 (git-fixes).
- ax25: improve the incomplete fix to avoid UAF and NPD bugs (git-fixes).
- blk-cgroup: fix missing put device in error path from blkg_conf_pref() (bsc#1195481).
- blk-mq: always allow reserved allocation in hctx_may_queue (bsc#1193787).
- blk-mq: avoid to iterate over stale request (bsc#1193787).
- blk-mq: clear stale request in tags->rq before freeing one request pool (bsc#1193787).
- blk-mq: clearing flush request reference in tags->rqs (bsc#1193787).
- blk-mq: do not grab rq's refcount in blk_mq_check_expired() (bsc#1193787 git-fixes).
- blk-mq: fix is_flush_rq (bsc#1193787 git-fixes).
- blk-mq: fix kernel panic during iterating over flush request (bsc#1193787 git-fixes).
- blk-mq: grab rq->refcount before calling ->fn in blk_mq_tagset_busy_iter (bsc#1193787).
- blk-mq: introduce blk_mq_set_request_complete (git-fixes).
- blk-mq: mark flush request as IDLE in flush_end_io() (bsc#1193787).
- blk-tag: Hide spin_lock (bsc#1193787).
- block: avoid double io accounting for flush request (bsc#1193787).
- block: do not send a rezise udev event for hidden block device (bsc#1193096).
- block: mark flush request as IDLE when it is really finished (bsc#1193787).
- bonding: pair enable_port with slave_arr_updates (git-fixes).
- bpf: Adjust BTF log size limit (git-fixes).
- bpf: Disallow BPF_LOG_KERNEL log level for bpf(BPF_BTF_LOAD) (git-fixes).
- btrfs: check for missing device in btrfs_trim_fs (bsc#1195701).
- btrfs: check worker before need_preemptive_reclaim (bsc#1196195).
- btrfs: do not do preemptive flushing if the majority is global rsv (bsc#1196195).
- btrfs: do not include the global rsv size in the preemptive used amount (bsc#1196195).
- btrfs: handle preemptive delalloc flushing slightly differently (bsc#1196195).
- btrfs: make sure SB_I_VERSION does not get unset by remount (bsc#1192210).
- btrfs: only clamp the first time we have to start flushing (bsc#1196195).
- btrfs: only ignore delalloc if delalloc is much smaller than ordered (bsc#1196195).
- btrfs: reduce the preemptive flushing threshold to 90% (bsc#1196195).
- btrfs: take into account global rsv in need_preemptive_reclaim (bsc#1196195).
- btrfs: use the global rsv size in the preemptive thresh calculation (bsc#1196195).
- ceph: properly put ceph_string reference after async create attempt (bsc#1195798).
- ceph: set pool_ns in new inode layout for async creates (bsc#1195799).
- dma-buf: heaps: Fix potential spectre v1 gadget (git-fixes).
- drm/amdgpu: fix logic inversion in check (git-fixes).
- drm/i915/gvt: Make DRM_I915_GVT depend on X86 (git-fixes).
- drm/i915/gvt: clean up kernel-doc in gtt.c (git-fixes).
- drm/i915/opregion: check port number bounds for SWSCI display power state (git-fixes).
- drm/i915/overlay: Prevent divide by zero bugs in scaling (git-fixes).
- drm/i915: Correctly populate use_sagv_wm for all pipes (git-fixes).
- drm/i915: Fix bw atomic check when switching between SAGV vs. no SAGV (git-fixes).
- drm/msm/dsi: Fix missing put_device() call in dsi_get_phy (git-fixes).
- drm/nouveau: fix off by one in BIOS boundary checking (git-fixes).
- drm/panel: simple: Assign data from panel_dpi_probe() correctly (git-fixes).
- drm/radeon: Fix backlight control on iMac 12,1 (git-fixes).
- drm/rockchip: dw_hdmi: Do not leave clock enabled in error case (git-fixes).
- drm/rockchip: vop: Correct RK3399 VOP register fields (git-fixes).
- drm/vc4: hdmi: Allow DBLCLK modes even if horz timing is odd (git-fixes).
- drm: panel-orientation-quirks: Add quirk for the 1Netbook OneXPlayer (git-fixes).
- ext4: check for inconsistent extents between index and leaf block (bsc#1194163 bsc#1196339).
- ext4: check for out-of-order index extents in ext4_valid_extent_entries() (bsc#1194163 bsc#1196339).
- ext4: fix an use-after-free issue about data=journal writeback mode (bsc#1195482).
- ext4: make sure quota gets properly shutdown on error (bsc#1195480).
- ext4: prevent partial update of the extent blocks (bsc#1194163 bsc#1196339).
- fsnotify: fix fsnotify hooks in pseudo filesystems (bsc#1195479).
- fsnotify: invalidate dcache before IN_DELETE event (bsc#1195478).
- gve: Add RX context (bsc#1191655).
- gve: Add a jumbo-frame device option (bsc#1191655).
- gve: Add consumed counts to ethtool stats (bsc#1191655).
- gve: Add optional metadata descriptor type GVE_TXD_MTD (bsc#1191655).
- gve: Correct order of processing device options (bsc#1191655).
- gve: Fix GFP flags when allocing pages (git-fixes).
- gve: Fix off by one in gve_tx_timeout() (bsc#1191655).
- gve: Implement packet continuation for RX (bsc#1191655).
- gve: Implement suspend/resume/shutdown (bsc#1191655).
- gve: Move the irq db indexes out of the ntfy block struct (bsc#1191655).
- gve: Recording rx queue before sending to napi (bsc#1191655).
- gve: Recover from queue stall due to missed IRQ (bsc#1191655).
- gve: Update gve_free_queue_page_list signature (bsc#1191655).
- gve: Use kvcalloc() instead of kvzalloc() (bsc#1191655).
- gve: fix for null pointer dereference (bsc#1191655).
- gve: fix the wrong AdminQ buffer queue index check (bsc#1176940).
- gve: fix unmatched u64_stats_update_end() (bsc#1191655).
- gve: remove memory barrier around seqno (bsc#1191655).
- i2c: brcmstb: fix support for DSL and CM variants (git-fixes).
- i40e: Fix for failed to init adminq while VF reset (git-fixes).
- i40e: Fix issue when maximum queues is exceeded (git-fixes).
- i40e: Fix queues reservation for XDP (git-fixes).
- i40e: Increase delay to 1 s after global EMP reset (git-fixes).
- i40e: fix unsigned stat widths (git-fixes).
- i40iw: Add support to make destroy QP synchronous (git-fixes)
- ibmvnic: Allow queueing resets during probe (bsc#1196516 ltc#196391).
- ibmvnic: clear fop when retrying probe (bsc#1196516 ltc#196391).
- ibmvnic: complete init_done on transport events (bsc#1196516 ltc#196391).
- ibmvnic: define flush_reset_queue helper (bsc#1196516 ltc#196391).
- ibmvnic: do not release napi in __ibmvnic_open() (bsc#1195668 ltc#195811).
- ibmvnic: free reset-work-item when flushing (bsc#1196516 ltc#196391).
- ibmvnic: init init_done_rc earlier (bsc#1196516 ltc#196391).
- ibmvnic: initialize rc before completing wait (bsc#1196516 ltc#196391).
- ibmvnic: register netdev after init of adapter (bsc#1196516 ltc#196391).
- ibmvnic: schedule failover only if vioctl fails (bsc#1196400 ltc#195815).
- ice: fix IPIP and SIT TSO offload (git-fixes).
- ice: fix an error code in ice_cfg_phy_fec() (jsc#SLE-12878).
- ima: Allow template selection with ima_template[_fmt]= after ima_hash= (git-fixes).
- ima: Do not print policy rule with inactive LSM labels (git-fixes).
- ima: Remove ima_policy file before directory (git-fixes).
- integrity: Make function integrity_add_key() static (git-fixes).
- integrity: check the return value of audit_log_start() (git-fixes).
- integrity: double check iint_cache was initialized (git-fixes).
- iommu/amd: Fix loop timeout issue in iommu_ga_log_enable() (git-fixes).
- iommu/amd: Remove useless irq affinity notifier (git-fixes).
- iommu/amd: Restore GA log/tail pointer on host resume (git-fixes).
- iommu/amd: X2apic mode: mask/unmask interrupts on suspend/resume (git-fixes).
- iommu/amd: X2apic mode: re-enable after resume (git-fixes).
- iommu/amd: X2apic mode: setup the INTX registers on mask/unmask (git-fixes).
- iommu/io-pgtable-arm-v7s: Add error handle for page table allocation failure (git-fixes).
- iommu/io-pgtable-arm: Fix table descriptor paddr formatting (git-fixes).
- iommu/iova: Fix race between FQ timeout and teardown (git-fixes).
- iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() (git-fixes).
- iwlwifi: fix use-after-free (git-fixes).
- iwlwifi: pcie: fix locking when 'HW not ready' (git-fixes).
- iwlwifi: pcie: gen2: fix locking when 'HW not ready' (git-fixes).
- ixgbevf: Require large buffers for build_skb on 82599VF (git-fixes).
- kABI fixup after adding vcpu_idx to struct kvm_cpu (bsc#1190972 LTC#194674).
- kABI: Fix kABI for AMD IOMMU driver (git-fixes).
- kabi: Hide changes to s390/AP structures (jsc#SLE-20807).
- lib/iov_iter: initialize 'flags' in new pipe_buffer (bsc#1196584).
- libsubcmd: Fix use-after-free for realloc(..., 0) (git-fixes).
- md/raid5: fix oops during stripe resizing (bsc#1181588).
- misc: fastrpc: avoid double fput() on failed usercopy (git-fixes).
- mmc: sdhci-of-esdhc: Check for error num after setting mask (git-fixes).
- mtd: rawnand: brcmnand: Fixed incorrect sub-page ECC status (git-fixes).
- mtd: rawnand: gpmi: do not leak PM reference in error path (git-fixes).
- mtd: rawnand: qcom: Fix clock sequencing in qcom_nandc_probe() (git-fixes).
- net/ibmvnic: Cleanup workaround doing an EOI after partition migration (bsc#1089644 ltc#166495 ltc#165544 git-fixes).
- net/mlx5e: Fix handling of wrong devices during bond netevent (jsc#SLE-15172).
- net: macb: Align the dma and coherent dma masks (git-fixes).
- net: mdio: aspeed: Add missing MODULE_DEVICE_TABLE (bsc#1176447).
- net: phy: marvell: Fix MDI-x polarity setting in 88e1118-compatible PHYs (git-fixes).
- net: phy: marvell: Fix RGMII Tx/Rx delays setting in 88e1121-compatible PHYs (git-fixes).
- net: phy: marvell: configure RGMII delays for 88E1118 (git-fixes).
- net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes).
- nfp: flower: fix ida_idx not being released (bsc#1154353).
- nfsd: allow delegation state ids to be revoked and then freed (bsc#1192483).
- nfsd: allow lock state ids to be revoked and then freed (bsc#1192483).
- nfsd: allow open state ids to be revoked and then freed (bsc#1192483).
- nfsd: do not admin-revoke NSv4.0 state ids (bsc#1192483).
- nfsd: prepare for supporting admin-revocation of state (bsc#1192483).
- nvme-core: use list_add_tail_rcu instead of list_add_tail for nvme_init_ns_head (git-fixes).
- nvme-fabrics: avoid double completions in nvmf_fail_nonready_command (git-fixes).
- nvme-fabrics: fix state check in nvmf_ctlr_matches_baseopts() (bsc#1195012).
- nvme-fabrics: ignore invalid fast_io_fail_tmo values (git-fixes).
- nvme-fabrics: remove superfluous nvmf_host_put in nvmf_parse_options (git-fixes).
- nvme-multipath: fix ANA state updates when a namespace is not present (git-fixes).
- nvme-tcp: fix data digest pointer calculation (git-fixes).
- nvme-tcp: fix incorrect h2cdata pdu offset accounting (git-fixes).
- nvme-tcp: fix memory leak when freeing a queue (git-fixes).
- nvme-tcp: fix possible use-after-completion (git-fixes).
- nvme-tcp: validate R2T PDU in nvme_tcp_handle_r2t() (git-fixes).
- nvme: also mark passthrough-only namespaces ready in nvme_update_ns_info (git-fixes).
- nvme: do not return an error from nvme_configure_metadata (git-fixes).
- nvme: fix use after free when disconnecting a reconnecting ctrl (git-fixes).
- nvme: introduce a nvme_host_path_error helper (git-fixes).
- nvme: let namespace probing continue for unsupported features (git-fixes).
- nvme: refactor ns->ctrl by request (git-fixes).
- pinctrl: intel: Fix a glitch when updating IRQ flags on a preconfigured line (git-fixes).
- pinctrl: intel: fix unexpected interrupt (git-fixes).
- powerpc/64: Move paca allocation later in boot (bsc#1190812).
- powerpc/64s: Fix debugfs_simple_attr.cocci warnings (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).
- powerpc/perf: Fix power_pmu_disable to call clear_pmi_irq_pending only if PMI is pending (bsc#1156395).
- powerpc/pseries/ddw: Revert 'Extend upper limit for huge DMA window for persistent memory' (bsc#1195995 ltc#196394).
- powerpc/pseries: read the lpar name from the firmware (bsc#1187716 ltc#193451).
- powerpc: Set crashkernel offset to mid of RMA region (bsc#1190812).
- powerpc: add link stack flush mitigation status in debugfs (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).
- rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev (git-fixes).
- rpmsg: char: Fix race between the release of rpmsg_eptdev and cdev (git-fixes).
- s390/AP: support new dynamic AP bus size limit (jsc#SLE-20807).
- s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (git-fixes).
- s390/bpf: Fix optimizing out zero-extensions (git-fixes).
- s390/cio: make ccw_device_dma_* more robust (bsc#1193243 LTC#195549).
- s390/cio: verify the driver availability for path_event call (bsc#1195928 LTC#196418).
- s390/cpumf: Support for CPU Measurement Facility CSVN 7 (bsc#1195081 LTC#196088).
- s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (bsc#1195081 LTC#196088).
- s390/pci: add s390_iommu_aperture kernel parameter (bsc#1193233 LTC#195540).
- s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194967 LTC#196028).
- s390/protvirt: fix error return code in uv_info_init() (jsc#SLE-22135).
- s390/sclp: fix Secure-IPL facility detection (bsc#1191741 LTC#194816).
- s390/uv: add prot virt guest/host indication files (jsc#SLE-22135).
- s390/uv: fix prot virt host indication compilation (jsc#SLE-22135).
- scripts/dtc: only append to HOST_EXTRACFLAGS instead of overwriting (git-fixes).
- scsi: core: Add a new error code DID_TRANSPORT_MARGINAL in scsi.h (bsc#1195506).
- scsi: core: Add limitless cmd retry support (bsc#1195506).
- scsi: core: No retries on abort success (bsc#1195506).
- scsi: kABI fix for 'eh_should_retry_cmd' (bsc#1195506).
- scsi: lpfc: Add support for eh_should_retry_cmd() (bsc#1195506).
- scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop (bsc#1189126).
- scsi: qla2xxx: Add devids and conditionals for 28xx (bsc#1195823).
- scsi: qla2xxx: Add marginal path handling support (bsc#1195506).
- scsi: qla2xxx: Add ql2xnvme_queues module param to configure number of NVMe queues (bsc#1195823).
- scsi: qla2xxx: Add qla2x00_async_done() for async routines (bsc#1195823).
- scsi: qla2xxx: Add retry for exec firmware (bsc#1195823).
- scsi: qla2xxx: Check for firmware dump already collected (bsc#1195823).
- scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters (bsc#1195823).
- scsi: qla2xxx: Fix device reconnect in loop topology (bsc#1195823).
- scsi: qla2xxx: Fix premature hw access after PCI error (bsc#1195823).
- scsi: qla2xxx: Fix scheduling while atomic (bsc#1195823).
- scsi: qla2xxx: Fix stuck session in gpdb (bsc#1195823).
- scsi: qla2xxx: Fix unmap of already freed sgl (bsc#1195823).
- scsi: qla2xxx: Fix warning for missing error code (bsc#1195823).
- scsi: qla2xxx: Fix warning message due to adisc being flushed (bsc#1195823).
- scsi: qla2xxx: Fix wrong FDMI data for 64G adapter (bsc#1195823).
- scsi: qla2xxx: Implement ref count for SRB (bsc#1195823).
- scsi: qla2xxx: Refactor asynchronous command initialization (bsc#1195823).
- scsi: qla2xxx: Remove a declaration (bsc#1195823).
- scsi: qla2xxx: Remove unused qla_sess_op_cmd_list from scsi_qla_host_t (bsc#1195823).
- scsi: qla2xxx: Return -ENOMEM if kzalloc() fails (bsc#1195823).
- scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (bsc#1195823).
- scsi: qla2xxx: Update version to 10.02.07.200-k (bsc#1195823).
- scsi: qla2xxx: Update version to 10.02.07.300-k (bsc#1195823).
- scsi: qla2xxx: edif: Fix clang warning (bsc#1195823).
- scsi: qla2xxx: edif: Fix inconsistent check of db_flags (bsc#1195823).
- scsi: qla2xxx: edif: Reduce connection thrash (bsc#1195823).
- scsi: qla2xxx: edif: Replace list_for_each_safe with list_for_each_entry_safe (bsc#1195823).
- scsi: qla2xxx: edif: Tweak trace message (bsc#1195823).
- scsi: scsi_transport_fc: Add a new rport state FC_PORTSTATE_MARGINAL (bsc#1195506).
- scsi: scsi_transport_fc: Add store capability to rport port_state in sysfs (bsc#1195506).
- scsi: target: iscsi: Fix cmd abort fabric stop race (bsc#1195286).
- scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (bsc#1195378 LTC#196244).
- scsi_transport_fc: kabi fix blank out FC_PORTSTATE_MARGINAL (bsc#1195506).
- spi: bcm-qspi: check for valid cs before applying chip select (git-fixes).
- spi: mediatek: Avoid NULL pointer crash in interrupt (git-fixes).
- spi: meson-spicc: add IRQ check in meson_spicc_probe (git-fixes).
- staging/fbtft: Fix backlight (git-fixes).
- staging: fbtft: Fix error path in fbtft_driver_module_init() (git-fixes).
- tracing: Do not inc err_log entry count if entry allocation fails (git-fixes).
- tracing: Dump stacktrace trigger to the corresponding instance (git-fixes).
- tracing: Fix smatch warning for null glob in event_hist_trigger_parse() (git-fixes).
- tracing: Have traceon and traceoff trigger honor the instance (git-fixes).
- tracing: Propagate is_signed to expression (git-fixes).
- tty: Add support for Brainboxes UC cards (git-fixes).
- udf: Fix NULL ptr deref when converting from inline format (bsc#1195476).
- udf: Restore i_lenAlloc when inode expansion fails (bsc#1195477).
- usb-storage: Add unusual-devs entry for VL817 USB-SATA bridge (git-fixes).
- usb: dwc2: Fix NULL qh in dwc2_queue_transaction (git-fixes).
- usb: dwc2: gadget: do not try to disable ep0 in dwc2_hsotg_suspend (git-fixes).
- usb: dwc3: do not set gadget->is_otg flag (git-fixes).
- usb: dwc3: gadget: Prevent core from processing stale TRBs (git-fixes).
- usb: f_fs: Fix use-after-free for epfile (git-fixes).
- usb: gadget: f_uac2: Define specific wTerminalType (git-fixes).
- usb: gadget: rndis: check size of RNDIS_MSG_SET command (git-fixes).
- usb: gadget: s3c: remove unused 'udc' variable (git-fixes).
- usb: gadget: udc: renesas_usb3: Fix host to USB_ROLE_NONE transition (git-fixes).
- usb: host: ehci-tegra: Fix error handling in tegra_ehci_probe() (git-fixes).
- usb: ulpi: Call of_node_put correctly (git-fixes).
- usb: ulpi: Move of_node_put to ulpi_dev_release (git-fixes).
- xhci-pci: Allow host runtime PM as default for Intel Alpine Ridge LP (git-fixes).
Patchnames: openSUSE-SLE-15.3-2022-755
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.6 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
95 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1089644 | self |
| https://bugzilla.suse.com/1154353 | self |
| https://bugzilla.suse.com/1156395 | self |
| https://bugzilla.suse.com/1157038 | self |
| https://bugzilla.suse.com/1157923 | self |
| https://bugzilla.suse.com/1176447 | self |
| https://bugzilla.suse.com/1176940 | self |
| https://bugzilla.suse.com/1178134 | self |
| https://bugzilla.suse.com/1181147 | self |
| https://bugzilla.suse.com/1181588 | self |
| https://bugzilla.suse.com/1183872 | self |
| https://bugzilla.suse.com/1187716 | self |
| https://bugzilla.suse.com/1188404 | self |
| https://bugzilla.suse.com/1189126 | self |
| https://bugzilla.suse.com/1190812 | self |
| https://bugzilla.suse.com/1190972 | self |
| https://bugzilla.suse.com/1191580 | self |
| https://bugzilla.suse.com/1191655 | self |
| https://bugzilla.suse.com/1191741 | self |
| https://bugzilla.suse.com/1192210 | self |
| https://bugzilla.suse.com/1192483 | self |
| https://bugzilla.suse.com/1193096 | self |
| https://bugzilla.suse.com/1193233 | self |
| https://bugzilla.suse.com/1193243 | self |
| https://bugzilla.suse.com/1193787 | self |
| https://bugzilla.suse.com/1194163 | self |
| https://bugzilla.suse.com/1194967 | self |
| https://bugzilla.suse.com/1195012 | self |
| https://bugzilla.suse.com/1195081 | self |
| https://bugzilla.suse.com/1195142 | self |
| https://bugzilla.suse.com/1195352 | self |
| https://bugzilla.suse.com/1195378 | self |
| https://bugzilla.suse.com/1195476 | self |
| https://bugzilla.suse.com/1195477 | self |
| https://bugzilla.suse.com/1195478 | self |
| https://bugzilla.suse.com/1195479 | self |
| https://bugzilla.suse.com/1195480 | self |
| https://bugzilla.suse.com/1195481 | self |
| https://bugzilla.suse.com/1195482 | self |
| https://bugzilla.suse.com/1195506 | self |
| https://bugzilla.suse.com/1195516 | self |
| https://bugzilla.suse.com/1195543 | self |
| https://bugzilla.suse.com/1195668 | self |
| https://bugzilla.suse.com/1195701 | self |
| https://bugzilla.suse.com/1195798 | self |
| https://bugzilla.suse.com/1195799 | self |
| https://bugzilla.suse.com/1195823 | self |
| https://bugzilla.suse.com/1195908 | self |
| https://bugzilla.suse.com/1195928 | self |
| https://bugzilla.suse.com/1195947 | self |
| https://bugzilla.suse.com/1195957 | self |
| https://bugzilla.suse.com/1195995 | self |
| https://bugzilla.suse.com/1196195 | self |
| https://bugzilla.suse.com/1196235 | self |
| https://bugzilla.suse.com/1196339 | self |
| https://bugzilla.suse.com/1196400 | self |
| https://bugzilla.suse.com/1196403 | self |
| https://bugzilla.suse.com/1196516 | self |
| https://bugzilla.suse.com/1196584 | self |
| https://bugzilla.suse.com/1196601 | self |
| https://bugzilla.suse.com/1196612 | self |
| https://bugzilla.suse.com/1196776 | self |
| https://www.suse.com/security/cve/CVE-2022-0001/ | self |
| https://www.suse.com/security/cve/CVE-2022-0002/ | self |
| https://www.suse.com/security/cve/CVE-2022-0492/ | self |
| https://www.suse.com/security/cve/CVE-2022-0516/ | self |
| https://www.suse.com/security/cve/CVE-2022-0847/ | self |
| https://www.suse.com/security/cve/CVE-2022-25375/ | self |
| https://www.suse.com/security/cve/CVE-2022-0001 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
| https://www.suse.com/security/cve/CVE-2022-0002 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
| https://www.suse.com/security/cve/CVE-2022-0492 | external |
| https://bugzilla.suse.com/1195543 | external |
| https://bugzilla.suse.com/1195908 | external |
| https://bugzilla.suse.com/1196612 | external |
| https://bugzilla.suse.com/1196776 | external |
| https://bugzilla.suse.com/1198615 | external |
| https://bugzilla.suse.com/1199255 | external |
| https://bugzilla.suse.com/1199615 | external |
| https://bugzilla.suse.com/1200084 | external |
| https://www.suse.com/security/cve/CVE-2022-0516 | external |
| https://bugzilla.suse.com/1195516 | external |
| https://bugzilla.suse.com/1195947 | external |
| https://www.suse.com/security/cve/CVE-2022-0847 | external |
| https://bugzilla.suse.com/1196584 | external |
| https://bugzilla.suse.com/1196601 | external |
| https://www.suse.com/security/cve/CVE-2022-25375 | external |
| https://bugzilla.suse.com/1196235 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes.\n\n\nTransient execution side-channel attacks attacking the Branch History Buffer (BHB),\nnamed \u0027Branch Target Injection\u0027 and \u0027Intra-Mode Branch History Injection\u0027 are now mitigated.\n\nThe following security bugs were fixed:\n\n- CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584).\n- CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580).\n- CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580).\n- CVE-2022-25375: The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory (bsc#1196235).\n- CVE-2022-0516: Fixed missing check in ioctl related to KVM in s390 allows kernel memory read/write (bsc#1195516).\n- CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543).\n\nThe following non-security bugs were fixed:\n\n- ACPI/IORT: Check node revision for PMCG resources (git-fixes).\n- ALSA: hda/realtek: Add missing fixup-model entry for Gigabyte X570 ALC1220 quirks (git-fixes).\n- ALSA: hda/realtek: Add quirk for ASUS GU603 (git-fixes).\n- ALSA: hda/realtek: Fix silent output on Gigabyte X570 Aorus Xtreme after reboot from Windows (git-fixes).\n- ALSA: hda/realtek: Fix silent output on Gigabyte X570S Aorus Master (newer chipset) (git-fixes).\n- ALSA: hda: Fix missing codec probe on Shenker Dock 15 (git-fixes).\n- ALSA: hda: Fix regression on forced probe mask option (git-fixes).\n- ALSA: usb-audio: Correct quirk for VF0770 (git-fixes).\n- ALSA: usb-audio: initialize variables that could ignore errors (git-fixes).\n- ASoC: Revert \u0027ASoC: mediatek: Check for error clk pointer\u0027 (git-fixes).\n- ASoC: cpcap: Check for NULL pointer after calling of_get_child_by_name (git-fixes).\n- ASoC: fsl: Add missing error handling in pcm030_fabric_probe (git-fixes).\n- ASoC: max9759: fix underflow in speaker_gain_control_put() (git-fixes).\n- ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw() (git-fixes).\n- ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_range() (git-fixes).\n- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() (git-fixes).\n- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() (git-fixes).\n- ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() (git-fixes).\n- ASoC: xilinx: xlnx_formatter_pcm: Make buffer bytes multiple of period bytes (git-fixes).\n- Align s390 NVME target options with other architectures (bsc#1188404, jsc#SLE-22494).\n- Bluetooth: refactor malicious adv data check (git-fixes).\n- EDAC/xgene: Fix deferred probing (bsc#1178134).\n- HID:Add support for UGTABLET WP5540 (git-fixes).\n- IB/cm: Avoid a loop when device has 255 ports (git-fixes)\n- IB/cma: Do not send IGMP leaves for sendonly Multicast groups (git-fixes).\n- IB/hfi1: Fix AIP early init panic (jsc#SLE-13208).\n- IB/hfi1: Fix error return code in parse_platform_config() (git-fixes)\n- IB/hfi1: Use kzalloc() for mmu_rb_handler allocation (git-fixes)\n- IB/isert: Fix a use after free in isert_connect_request (git-fixes)\n- IB/mlx4: Separate tunnel and wire bufs parameters (git-fixes)\n- IB/mlx5: Add missing error code (git-fixes)\n- IB/mlx5: Add mutex destroy call to cap_mask_mutex mutex (git-fixes)\n- IB/mlx5: Fix error unwinding when set_has_smi_cap fails (git-fixes)\n- IB/mlx5: Return appropriate error code instead of ENOMEM (git-fixes)\n- IB/umad: Return EIO in case of when device disassociated (git-fixes)\n- IB/umad: Return EPOLLERR in case of when device disassociated (git-fixes)\n- Input: wm97xx: Simplify resource management (git-fixes).\n- KVM: remember position in kvm-\u003evcpus array (bsc#1190972 LTC#194674).\n- NFS: Ensure the server had an up to date ctime before renaming (git-fixes).\n- NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1195957).\n- NFSv4: Handle case where the lookup of a directory fails (git-fixes).\n- NFSv4: nfs_atomic_open() can race when looking up a non-regular file (git-fixes).\n- PM: hibernate: Remove register_nosave_region_late() (git-fixes).\n- PM: s2idle: ACPI: Fix wakeup interrupts handling (git-fixes).\n- PM: wakeup: simplify the output logic of pm_show_wakelocks() (git-fixes).\n- RDMA/addr: Be strict with gid size (git-fixes)\n- RDMA/bnxt_re: Fix a double free in bnxt_qplib_alloc_res (git-fixes)\n- RDMA/bnxt_re: Fix error return code in bnxt_qplib_cq_process_terminal() (git-fixes)\n- RDMA/bnxt_re: Set queue pair state when being queried (git-fixes)\n- RDMA/cm: Fix an attempt to use non-valid pointer when cleaning timewait (git-fixes)\n- RDMA/cma: Use correct address when leaving multicast group (bsc#1181147).\n- RDMA/core: Always release restrack object (git-fixes)\n- RDMA/core: Do not access cm_id after its destruction (git-fixes)\n- RDMA/core: Do not indicate device ready when device enablement fails (git-fixes)\n- RDMA/core: Fix corrupted SL on passive side (git-fixes)\n- RDMA/core: Unify RoCE check and re-factor code (git-fixes)\n- RDMA/cxgb4: Fix adapter LE hash errors while destroying ipv6 listening server (git-fixes)\n- RDMA/cxgb4: Fix the reported max_recv_sge value (git-fixes)\n- RDMA/cxgb4: Validate the number of CQEs (git-fixes)\n- RDMA/cxgb4: add missing qpid increment (git-fixes)\n- RDMA/cxgb4: check for ipv6 address properly while destroying listener (git-fixes)\n- RDMA/hns: Add a check for current state before modifying QP (git-fixes)\n- RDMA/hns: Remove the portn field in UD SQ WQE (git-fixes)\n- RDMA/hns: Remove unnecessary access right set during INIT2INIT (git-fixes)\n- RDMA/i40iw: Address an mmap handler exploit in i40iw (git-fixes)\n- RDMA/i40iw: Fix error unwinding when i40iw_hmc_sd_one fails (git-fixes)\n- RDMA/mlx5: Fix corruption of reg_pages in mlx5_ib_rereg_user_mr() (git-fixes)\n- RDMA/mlx5: Fix potential race between destroy and CQE poll (git-fixes)\n- RDMA/mlx5: Fix query DCT via DEVX (git-fixes)\n- RDMA/mlx5: Fix type warning of sizeof in __mlx5_ib_alloc_counters() (git-fixes)\n- RDMA/mlx5: Fix wrong free of blue flame register on error (git-fixes)\n- RDMA/mlx5: Issue FW command to destroy SRQ on reentry (git-fixes)\n- RDMA/mlx5: Recover from fatal event in dual port mode (git-fixes)\n- RDMA/mlx5: Use the correct obj_id upon DEVX TIR creation (git-fixes)\n- RDMA/ocrdma: Fix use after free in ocrdma_dealloc_ucontext_pd() (git-fixes)\n- RDMA/rxe: Clear all QP fields if creation failed (git-fixes)\n- RDMA/rxe: Compute PSN windows correctly (git-fixes)\n- RDMA/rxe: Correct skb on loopback path (git-fixes)\n- RDMA/rxe: Fix coding error in rxe_rcv_mcast_pkt (git-fixes)\n- RDMA/rxe: Fix coding error in rxe_recv.c (git-fixes)\n- RDMA/rxe: Fix missing kconfig dependency on CRYPTO (git-fixes)\n- RDMA/rxe: Remove useless code in rxe_recv.c (git-fixes)\n- RDMA/siw: Fix a use after free in siw_alloc_mr (git-fixes)\n- RDMA/siw: Fix calculation of tx_valid_cpus size (git-fixes)\n- RDMA/siw: Fix handling of zero-sized Read and Receive Queues. (git-fixes)\n- RDMA/siw: Properly check send and receive CQ pointers (git-fixes)\n- RDMA/siw: Release xarray entry (git-fixes)\n- RDMA/ucma: Protect mc during concurrent multicast leaves (bsc#1181147).\n- RDMA/usnic: Fix memleak in find_free_vf_and_create_qp_grp (git-fixes)\n- RDMA/uverbs: Fix a NULL vs IS_ERR() bug (git-fixes)\n- RDMA/uverbs: Tidy input validation of ib_uverbs_rereg_mr() (git-fixes)\n- RMDA/sw: Do not allow drivers using dma_virt_ops on highmem configs (git-fixes)\n- USB: core: Fix hang in usb_kill_urb by adding memory barriers (git-fixes).\n- USB: serial: ch341: add support for GW Instek USB2.0-Serial devices (git-fixes).\n- USB: serial: cp210x: add CPI Bulk Coin Recycler id (git-fixes).\n- USB: serial: cp210x: add NCR Retail IO box id (git-fixes).\n- USB: serial: ftdi_sio: add support for Brainboxes US-159/235/320 (git-fixes).\n- USB: serial: mos7840: fix probe error handling (git-fixes).\n- USB: serial: mos7840: remove duplicated 0xac24 device ID (git-fixes).\n- USB: serial: option: add ZTE MF286D modem (git-fixes).\n- ata: libata-core: Disable TRIM on M88V29 (git-fixes).\n- ax25: improve the incomplete fix to avoid UAF and NPD bugs (git-fixes).\n- blk-cgroup: fix missing put device in error path from blkg_conf_pref() (bsc#1195481).\n- blk-mq: always allow reserved allocation in hctx_may_queue (bsc#1193787).\n- blk-mq: avoid to iterate over stale request (bsc#1193787).\n- blk-mq: clear stale request in tags-\u003erq before freeing one request pool (bsc#1193787).\n- blk-mq: clearing flush request reference in tags-\u003erqs (bsc#1193787).\n- blk-mq: do not grab rq\u0027s refcount in blk_mq_check_expired() (bsc#1193787 git-fixes).\n- blk-mq: fix is_flush_rq (bsc#1193787 git-fixes).\n- blk-mq: fix kernel panic during iterating over flush request (bsc#1193787 git-fixes).\n- blk-mq: grab rq-\u003erefcount before calling -\u003efn in blk_mq_tagset_busy_iter (bsc#1193787).\n- blk-mq: introduce blk_mq_set_request_complete (git-fixes).\n- blk-mq: mark flush request as IDLE in flush_end_io() (bsc#1193787).\n- blk-tag: Hide spin_lock (bsc#1193787).\n- block: avoid double io accounting for flush request (bsc#1193787).\n- block: do not send a rezise udev event for hidden block device (bsc#1193096).\n- block: mark flush request as IDLE when it is really finished (bsc#1193787).\n- bonding: pair enable_port with slave_arr_updates (git-fixes).\n- bpf: Adjust BTF log size limit (git-fixes).\n- bpf: Disallow BPF_LOG_KERNEL log level for bpf(BPF_BTF_LOAD) (git-fixes).\n- btrfs: check for missing device in btrfs_trim_fs (bsc#1195701).\n- btrfs: check worker before need_preemptive_reclaim (bsc#1196195).\n- btrfs: do not do preemptive flushing if the majority is global rsv (bsc#1196195).\n- btrfs: do not include the global rsv size in the preemptive used amount (bsc#1196195).\n- btrfs: handle preemptive delalloc flushing slightly differently (bsc#1196195).\n- btrfs: make sure SB_I_VERSION does not get unset by remount (bsc#1192210).\n- btrfs: only clamp the first time we have to start flushing (bsc#1196195).\n- btrfs: only ignore delalloc if delalloc is much smaller than ordered (bsc#1196195).\n- btrfs: reduce the preemptive flushing threshold to 90% (bsc#1196195).\n- btrfs: take into account global rsv in need_preemptive_reclaim (bsc#1196195).\n- btrfs: use the global rsv size in the preemptive thresh calculation (bsc#1196195).\n- ceph: properly put ceph_string reference after async create attempt (bsc#1195798).\n- ceph: set pool_ns in new inode layout for async creates (bsc#1195799).\n- dma-buf: heaps: Fix potential spectre v1 gadget (git-fixes).\n- drm/amdgpu: fix logic inversion in check (git-fixes).\n- drm/i915/gvt: Make DRM_I915_GVT depend on X86 (git-fixes).\n- drm/i915/gvt: clean up kernel-doc in gtt.c (git-fixes).\n- drm/i915/opregion: check port number bounds for SWSCI display power state (git-fixes).\n- drm/i915/overlay: Prevent divide by zero bugs in scaling (git-fixes).\n- drm/i915: Correctly populate use_sagv_wm for all pipes (git-fixes).\n- drm/i915: Fix bw atomic check when switching between SAGV vs. no SAGV (git-fixes).\n- drm/msm/dsi: Fix missing put_device() call in dsi_get_phy (git-fixes).\n- drm/nouveau: fix off by one in BIOS boundary checking (git-fixes).\n- drm/panel: simple: Assign data from panel_dpi_probe() correctly (git-fixes).\n- drm/radeon: Fix backlight control on iMac 12,1 (git-fixes).\n- drm/rockchip: dw_hdmi: Do not leave clock enabled in error case (git-fixes).\n- drm/rockchip: vop: Correct RK3399 VOP register fields (git-fixes).\n- drm/vc4: hdmi: Allow DBLCLK modes even if horz timing is odd (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for the 1Netbook OneXPlayer (git-fixes).\n- ext4: check for inconsistent extents between index and leaf block (bsc#1194163 bsc#1196339).\n- ext4: check for out-of-order index extents in ext4_valid_extent_entries() (bsc#1194163 bsc#1196339).\n- ext4: fix an use-after-free issue about data=journal writeback mode (bsc#1195482).\n- ext4: make sure quota gets properly shutdown on error (bsc#1195480).\n- ext4: prevent partial update of the extent blocks (bsc#1194163 bsc#1196339).\n- fsnotify: fix fsnotify hooks in pseudo filesystems (bsc#1195479).\n- fsnotify: invalidate dcache before IN_DELETE event (bsc#1195478).\n- gve: Add RX context (bsc#1191655).\n- gve: Add a jumbo-frame device option (bsc#1191655).\n- gve: Add consumed counts to ethtool stats (bsc#1191655).\n- gve: Add optional metadata descriptor type GVE_TXD_MTD (bsc#1191655).\n- gve: Correct order of processing device options (bsc#1191655).\n- gve: Fix GFP flags when allocing pages (git-fixes).\n- gve: Fix off by one in gve_tx_timeout() (bsc#1191655).\n- gve: Implement packet continuation for RX (bsc#1191655).\n- gve: Implement suspend/resume/shutdown (bsc#1191655).\n- gve: Move the irq db indexes out of the ntfy block struct (bsc#1191655).\n- gve: Recording rx queue before sending to napi (bsc#1191655).\n- gve: Recover from queue stall due to missed IRQ (bsc#1191655).\n- gve: Update gve_free_queue_page_list signature (bsc#1191655).\n- gve: Use kvcalloc() instead of kvzalloc() (bsc#1191655).\n- gve: fix for null pointer dereference (bsc#1191655).\n- gve: fix the wrong AdminQ buffer queue index check (bsc#1176940).\n- gve: fix unmatched u64_stats_update_end() (bsc#1191655).\n- gve: remove memory barrier around seqno (bsc#1191655).\n- i2c: brcmstb: fix support for DSL and CM variants (git-fixes).\n- i40e: Fix for failed to init adminq while VF reset (git-fixes).\n- i40e: Fix issue when maximum queues is exceeded (git-fixes).\n- i40e: Fix queues reservation for XDP (git-fixes).\n- i40e: Increase delay to 1 s after global EMP reset (git-fixes).\n- i40e: fix unsigned stat widths (git-fixes).\n- i40iw: Add support to make destroy QP synchronous (git-fixes)\n- ibmvnic: Allow queueing resets during probe (bsc#1196516 ltc#196391).\n- ibmvnic: clear fop when retrying probe (bsc#1196516 ltc#196391).\n- ibmvnic: complete init_done on transport events (bsc#1196516 ltc#196391).\n- ibmvnic: define flush_reset_queue helper (bsc#1196516 ltc#196391).\n- ibmvnic: do not release napi in __ibmvnic_open() (bsc#1195668 ltc#195811).\n- ibmvnic: free reset-work-item when flushing (bsc#1196516 ltc#196391).\n- ibmvnic: init init_done_rc earlier (bsc#1196516 ltc#196391).\n- ibmvnic: initialize rc before completing wait (bsc#1196516 ltc#196391).\n- ibmvnic: register netdev after init of adapter (bsc#1196516 ltc#196391).\n- ibmvnic: schedule failover only if vioctl fails (bsc#1196400 ltc#195815).\n- ice: fix IPIP and SIT TSO offload (git-fixes).\n- ice: fix an error code in ice_cfg_phy_fec() (jsc#SLE-12878).\n- ima: Allow template selection with ima_template[_fmt]= after ima_hash= (git-fixes).\n- ima: Do not print policy rule with inactive LSM labels (git-fixes).\n- ima: Remove ima_policy file before directory (git-fixes).\n- integrity: Make function integrity_add_key() static (git-fixes).\n- integrity: check the return value of audit_log_start() (git-fixes).\n- integrity: double check iint_cache was initialized (git-fixes).\n- iommu/amd: Fix loop timeout issue in iommu_ga_log_enable() (git-fixes).\n- iommu/amd: Remove useless irq affinity notifier (git-fixes).\n- iommu/amd: Restore GA log/tail pointer on host resume (git-fixes).\n- iommu/amd: X2apic mode: mask/unmask interrupts on suspend/resume (git-fixes).\n- iommu/amd: X2apic mode: re-enable after resume (git-fixes).\n- iommu/amd: X2apic mode: setup the INTX registers on mask/unmask (git-fixes).\n- iommu/io-pgtable-arm-v7s: Add error handle for page table allocation failure (git-fixes).\n- iommu/io-pgtable-arm: Fix table descriptor paddr formatting (git-fixes).\n- iommu/iova: Fix race between FQ timeout and teardown (git-fixes).\n- iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() (git-fixes).\n- iwlwifi: fix use-after-free (git-fixes).\n- iwlwifi: pcie: fix locking when \u0027HW not ready\u0027 (git-fixes).\n- iwlwifi: pcie: gen2: fix locking when \u0027HW not ready\u0027 (git-fixes).\n- ixgbevf: Require large buffers for build_skb on 82599VF (git-fixes).\n- kABI fixup after adding vcpu_idx to struct kvm_cpu (bsc#1190972 LTC#194674).\n- kABI: Fix kABI for AMD IOMMU driver (git-fixes).\n- kabi: Hide changes to s390/AP structures (jsc#SLE-20807).\n- lib/iov_iter: initialize \u0027flags\u0027 in new pipe_buffer (bsc#1196584).\n- libsubcmd: Fix use-after-free for realloc(..., 0) (git-fixes).\n- md/raid5: fix oops during stripe resizing (bsc#1181588).\n- misc: fastrpc: avoid double fput() on failed usercopy (git-fixes).\n- mmc: sdhci-of-esdhc: Check for error num after setting mask (git-fixes).\n- mtd: rawnand: brcmnand: Fixed incorrect sub-page ECC status (git-fixes).\n- mtd: rawnand: gpmi: do not leak PM reference in error path (git-fixes).\n- mtd: rawnand: qcom: Fix clock sequencing in qcom_nandc_probe() (git-fixes).\n- net/ibmvnic: Cleanup workaround doing an EOI after partition migration (bsc#1089644 ltc#166495 ltc#165544 git-fixes).\n- net/mlx5e: Fix handling of wrong devices during bond netevent (jsc#SLE-15172).\n- net: macb: Align the dma and coherent dma masks (git-fixes).\n- net: mdio: aspeed: Add missing MODULE_DEVICE_TABLE (bsc#1176447).\n- net: phy: marvell: Fix MDI-x polarity setting in 88e1118-compatible PHYs (git-fixes).\n- net: phy: marvell: Fix RGMII Tx/Rx delays setting in 88e1121-compatible PHYs (git-fixes).\n- net: phy: marvell: configure RGMII delays for 88E1118 (git-fixes).\n- net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes).\n- nfp: flower: fix ida_idx not being released (bsc#1154353).\n- nfsd: allow delegation state ids to be revoked and then freed (bsc#1192483).\n- nfsd: allow lock state ids to be revoked and then freed (bsc#1192483).\n- nfsd: allow open state ids to be revoked and then freed (bsc#1192483).\n- nfsd: do not admin-revoke NSv4.0 state ids (bsc#1192483).\n- nfsd: prepare for supporting admin-revocation of state (bsc#1192483).\n- nvme-core: use list_add_tail_rcu instead of list_add_tail for nvme_init_ns_head (git-fixes).\n- nvme-fabrics: avoid double completions in nvmf_fail_nonready_command (git-fixes).\n- nvme-fabrics: fix state check in nvmf_ctlr_matches_baseopts() (bsc#1195012).\n- nvme-fabrics: ignore invalid fast_io_fail_tmo values (git-fixes).\n- nvme-fabrics: remove superfluous nvmf_host_put in nvmf_parse_options (git-fixes).\n- nvme-multipath: fix ANA state updates when a namespace is not present (git-fixes).\n- nvme-tcp: fix data digest pointer calculation (git-fixes).\n- nvme-tcp: fix incorrect h2cdata pdu offset accounting (git-fixes).\n- nvme-tcp: fix memory leak when freeing a queue (git-fixes).\n- nvme-tcp: fix possible use-after-completion (git-fixes).\n- nvme-tcp: validate R2T PDU in nvme_tcp_handle_r2t() (git-fixes).\n- nvme: also mark passthrough-only namespaces ready in nvme_update_ns_info (git-fixes).\n- nvme: do not return an error from nvme_configure_metadata (git-fixes).\n- nvme: fix use after free when disconnecting a reconnecting ctrl (git-fixes).\n- nvme: introduce a nvme_host_path_error helper (git-fixes).\n- nvme: let namespace probing continue for unsupported features (git-fixes).\n- nvme: refactor ns-\u003ectrl by request (git-fixes).\n- pinctrl: intel: Fix a glitch when updating IRQ flags on a preconfigured line (git-fixes).\n- pinctrl: intel: fix unexpected interrupt (git-fixes).\n- powerpc/64: Move paca allocation later in boot (bsc#1190812).\n- powerpc/64s: Fix debugfs_simple_attr.cocci warnings (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).\n- powerpc/perf: Fix power_pmu_disable to call clear_pmi_irq_pending only if PMI is pending (bsc#1156395).\n- powerpc/pseries/ddw: Revert \u0027Extend upper limit for huge DMA window for persistent memory\u0027 (bsc#1195995 ltc#196394).\n- powerpc/pseries: read the lpar name from the firmware (bsc#1187716 ltc#193451).\n- powerpc: Set crashkernel offset to mid of RMA region (bsc#1190812).\n- powerpc: add link stack flush mitigation status in debugfs (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).\n- rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev (git-fixes).\n- rpmsg: char: Fix race between the release of rpmsg_eptdev and cdev (git-fixes).\n- s390/AP: support new dynamic AP bus size limit (jsc#SLE-20807).\n- s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (git-fixes).\n- s390/bpf: Fix optimizing out zero-extensions (git-fixes).\n- s390/cio: make ccw_device_dma_* more robust (bsc#1193243 LTC#195549).\n- s390/cio: verify the driver availability for path_event call (bsc#1195928 LTC#196418).\n- s390/cpumf: Support for CPU Measurement Facility CSVN 7 (bsc#1195081 LTC#196088).\n- s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (bsc#1195081 LTC#196088).\n- s390/pci: add s390_iommu_aperture kernel parameter (bsc#1193233 LTC#195540).\n- s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194967 LTC#196028).\n- s390/protvirt: fix error return code in uv_info_init() (jsc#SLE-22135).\n- s390/sclp: fix Secure-IPL facility detection (bsc#1191741 LTC#194816).\n- s390/uv: add prot virt guest/host indication files (jsc#SLE-22135).\n- s390/uv: fix prot virt host indication compilation (jsc#SLE-22135).\n- scripts/dtc: only append to HOST_EXTRACFLAGS instead of overwriting (git-fixes).\n- scsi: core: Add a new error code DID_TRANSPORT_MARGINAL in scsi.h (bsc#1195506).\n- scsi: core: Add limitless cmd retry support (bsc#1195506).\n- scsi: core: No retries on abort success (bsc#1195506).\n- scsi: kABI fix for \u0027eh_should_retry_cmd\u0027 (bsc#1195506).\n- scsi: lpfc: Add support for eh_should_retry_cmd() (bsc#1195506).\n- scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop (bsc#1189126).\n- scsi: qla2xxx: Add devids and conditionals for 28xx (bsc#1195823).\n- scsi: qla2xxx: Add marginal path handling support (bsc#1195506).\n- scsi: qla2xxx: Add ql2xnvme_queues module param to configure number of NVMe queues (bsc#1195823).\n- scsi: qla2xxx: Add qla2x00_async_done() for async routines (bsc#1195823).\n- scsi: qla2xxx: Add retry for exec firmware (bsc#1195823).\n- scsi: qla2xxx: Check for firmware dump already collected (bsc#1195823).\n- scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters (bsc#1195823).\n- scsi: qla2xxx: Fix device reconnect in loop topology (bsc#1195823).\n- scsi: qla2xxx: Fix premature hw access after PCI error (bsc#1195823).\n- scsi: qla2xxx: Fix scheduling while atomic (bsc#1195823).\n- scsi: qla2xxx: Fix stuck session in gpdb (bsc#1195823).\n- scsi: qla2xxx: Fix unmap of already freed sgl (bsc#1195823).\n- scsi: qla2xxx: Fix warning for missing error code (bsc#1195823).\n- scsi: qla2xxx: Fix warning message due to adisc being flushed (bsc#1195823).\n- scsi: qla2xxx: Fix wrong FDMI data for 64G adapter (bsc#1195823).\n- scsi: qla2xxx: Implement ref count for SRB (bsc#1195823).\n- scsi: qla2xxx: Refactor asynchronous command initialization (bsc#1195823).\n- scsi: qla2xxx: Remove a declaration (bsc#1195823).\n- scsi: qla2xxx: Remove unused qla_sess_op_cmd_list from scsi_qla_host_t (bsc#1195823).\n- scsi: qla2xxx: Return -ENOMEM if kzalloc() fails (bsc#1195823).\n- scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (bsc#1195823).\n- scsi: qla2xxx: Update version to 10.02.07.200-k (bsc#1195823).\n- scsi: qla2xxx: Update version to 10.02.07.300-k (bsc#1195823).\n- scsi: qla2xxx: edif: Fix clang warning (bsc#1195823).\n- scsi: qla2xxx: edif: Fix inconsistent check of db_flags (bsc#1195823).\n- scsi: qla2xxx: edif: Reduce connection thrash (bsc#1195823).\n- scsi: qla2xxx: edif: Replace list_for_each_safe with list_for_each_entry_safe (bsc#1195823).\n- scsi: qla2xxx: edif: Tweak trace message (bsc#1195823).\n- scsi: scsi_transport_fc: Add a new rport state FC_PORTSTATE_MARGINAL (bsc#1195506).\n- scsi: scsi_transport_fc: Add store capability to rport port_state in sysfs (bsc#1195506).\n- scsi: target: iscsi: Fix cmd abort fabric stop race (bsc#1195286).\n- scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (bsc#1195378 LTC#196244).\n- scsi_transport_fc: kabi fix blank out FC_PORTSTATE_MARGINAL (bsc#1195506).\n- spi: bcm-qspi: check for valid cs before applying chip select (git-fixes).\n- spi: mediatek: Avoid NULL pointer crash in interrupt (git-fixes).\n- spi: meson-spicc: add IRQ check in meson_spicc_probe (git-fixes).\n- staging/fbtft: Fix backlight (git-fixes).\n- staging: fbtft: Fix error path in fbtft_driver_module_init() (git-fixes).\n- tracing: Do not inc err_log entry count if entry allocation fails (git-fixes).\n- tracing: Dump stacktrace trigger to the corresponding instance (git-fixes).\n- tracing: Fix smatch warning for null glob in event_hist_trigger_parse() (git-fixes).\n- tracing: Have traceon and traceoff trigger honor the instance (git-fixes).\n- tracing: Propagate is_signed to expression (git-fixes).\n- tty: Add support for Brainboxes UC cards (git-fixes).\n- udf: Fix NULL ptr deref when converting from inline format (bsc#1195476).\n- udf: Restore i_lenAlloc when inode expansion fails (bsc#1195477).\n- usb-storage: Add unusual-devs entry for VL817 USB-SATA bridge (git-fixes).\n- usb: dwc2: Fix NULL qh in dwc2_queue_transaction (git-fixes).\n- usb: dwc2: gadget: do not try to disable ep0 in dwc2_hsotg_suspend (git-fixes).\n- usb: dwc3: do not set gadget-\u003eis_otg flag (git-fixes).\n- usb: dwc3: gadget: Prevent core from processing stale TRBs (git-fixes).\n- usb: f_fs: Fix use-after-free for epfile (git-fixes).\n- usb: gadget: f_uac2: Define specific wTerminalType (git-fixes).\n- usb: gadget: rndis: check size of RNDIS_MSG_SET command (git-fixes).\n- usb: gadget: s3c: remove unused \u0027udc\u0027 variable (git-fixes).\n- usb: gadget: udc: renesas_usb3: Fix host to USB_ROLE_NONE transition (git-fixes).\n- usb: host: ehci-tegra: Fix error handling in tegra_ehci_probe() (git-fixes).\n- usb: ulpi: Call of_node_put correctly (git-fixes).\n- usb: ulpi: Move of_node_put to ulpi_dev_release (git-fixes).\n- xhci-pci: Allow host runtime PM as default for Intel Alpine Ridge LP (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2022-755",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_0755-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2022:0755-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PDLUIZF7VQIB7OV6GCQHOPOBN2UU2POW/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2022:0755-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PDLUIZF7VQIB7OV6GCQHOPOBN2UU2POW/"
},
{
"category": "self",
"summary": "SUSE Bug 1089644",
"url": "https://bugzilla.suse.com/1089644"
},
{
"category": "self",
"summary": "SUSE Bug 1154353",
"url": "https://bugzilla.suse.com/1154353"
},
{
"category": "self",
"summary": "SUSE Bug 1156395",
"url": "https://bugzilla.suse.com/1156395"
},
{
"category": "self",
"summary": "SUSE Bug 1157038",
"url": "https://bugzilla.suse.com/1157038"
},
{
"category": "self",
"summary": "SUSE Bug 1157923",
"url": "https://bugzilla.suse.com/1157923"
},
{
"category": "self",
"summary": "SUSE Bug 1176447",
"url": "https://bugzilla.suse.com/1176447"
},
{
"category": "self",
"summary": "SUSE Bug 1176940",
"url": "https://bugzilla.suse.com/1176940"
},
{
"category": "self",
"summary": "SUSE Bug 1178134",
"url": "https://bugzilla.suse.com/1178134"
},
{
"category": "self",
"summary": "SUSE Bug 1181147",
"url": "https://bugzilla.suse.com/1181147"
},
{
"category": "self",
"summary": "SUSE Bug 1181588",
"url": "https://bugzilla.suse.com/1181588"
},
{
"category": "self",
"summary": "SUSE Bug 1183872",
"url": "https://bugzilla.suse.com/1183872"
},
{
"category": "self",
"summary": "SUSE Bug 1187716",
"url": "https://bugzilla.suse.com/1187716"
},
{
"category": "self",
"summary": "SUSE Bug 1188404",
"url": "https://bugzilla.suse.com/1188404"
},
{
"category": "self",
"summary": "SUSE Bug 1189126",
"url": "https://bugzilla.suse.com/1189126"
},
{
"category": "self",
"summary": "SUSE Bug 1190812",
"url": "https://bugzilla.suse.com/1190812"
},
{
"category": "self",
"summary": "SUSE Bug 1190972",
"url": "https://bugzilla.suse.com/1190972"
},
{
"category": "self",
"summary": "SUSE Bug 1191580",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "self",
"summary": "SUSE Bug 1191655",
"url": "https://bugzilla.suse.com/1191655"
},
{
"category": "self",
"summary": "SUSE Bug 1191741",
"url": "https://bugzilla.suse.com/1191741"
},
{
"category": "self",
"summary": "SUSE Bug 1192210",
"url": "https://bugzilla.suse.com/1192210"
},
{
"category": "self",
"summary": "SUSE Bug 1192483",
"url": "https://bugzilla.suse.com/1192483"
},
{
"category": "self",
"summary": "SUSE Bug 1193096",
"url": "https://bugzilla.suse.com/1193096"
},
{
"category": "self",
"summary": "SUSE Bug 1193233",
"url": "https://bugzilla.suse.com/1193233"
},
{
"category": "self",
"summary": "SUSE Bug 1193243",
"url": "https://bugzilla.suse.com/1193243"
},
{
"category": "self",
"summary": "SUSE Bug 1193787",
"url": "https://bugzilla.suse.com/1193787"
},
{
"category": "self",
"summary": "SUSE Bug 1194163",
"url": "https://bugzilla.suse.com/1194163"
},
{
"category": "self",
"summary": "SUSE Bug 1194967",
"url": "https://bugzilla.suse.com/1194967"
},
{
"category": "self",
"summary": "SUSE Bug 1195012",
"url": "https://bugzilla.suse.com/1195012"
},
{
"category": "self",
"summary": "SUSE Bug 1195081",
"url": "https://bugzilla.suse.com/1195081"
},
{
"category": "self",
"summary": "SUSE Bug 1195142",
"url": "https://bugzilla.suse.com/1195142"
},
{
"category": "self",
"summary": "SUSE Bug 1195352",
"url": "https://bugzilla.suse.com/1195352"
},
{
"category": "self",
"summary": "SUSE Bug 1195378",
"url": "https://bugzilla.suse.com/1195378"
},
{
"category": "self",
"summary": "SUSE Bug 1195476",
"url": "https://bugzilla.suse.com/1195476"
},
{
"category": "self",
"summary": "SUSE Bug 1195477",
"url": "https://bugzilla.suse.com/1195477"
},
{
"category": "self",
"summary": "SUSE Bug 1195478",
"url": "https://bugzilla.suse.com/1195478"
},
{
"category": "self",
"summary": "SUSE Bug 1195479",
"url": "https://bugzilla.suse.com/1195479"
},
{
"category": "self",
"summary": "SUSE Bug 1195480",
"url": "https://bugzilla.suse.com/1195480"
},
{
"category": "self",
"summary": "SUSE Bug 1195481",
"url": "https://bugzilla.suse.com/1195481"
},
{
"category": "self",
"summary": "SUSE Bug 1195482",
"url": "https://bugzilla.suse.com/1195482"
},
{
"category": "self",
"summary": "SUSE Bug 1195506",
"url": "https://bugzilla.suse.com/1195506"
},
{
"category": "self",
"summary": "SUSE Bug 1195516",
"url": "https://bugzilla.suse.com/1195516"
},
{
"category": "self",
"summary": "SUSE Bug 1195543",
"url": "https://bugzilla.suse.com/1195543"
},
{
"category": "self",
"summary": "SUSE Bug 1195668",
"url": "https://bugzilla.suse.com/1195668"
},
{
"category": "self",
"summary": "SUSE Bug 1195701",
"url": "https://bugzilla.suse.com/1195701"
},
{
"category": "self",
"summary": "SUSE Bug 1195798",
"url": "https://bugzilla.suse.com/1195798"
},
{
"category": "self",
"summary": "SUSE Bug 1195799",
"url": "https://bugzilla.suse.com/1195799"
},
{
"category": "self",
"summary": "SUSE Bug 1195823",
"url": "https://bugzilla.suse.com/1195823"
},
{
"category": "self",
"summary": "SUSE Bug 1195908",
"url": "https://bugzilla.suse.com/1195908"
},
{
"category": "self",
"summary": "SUSE Bug 1195928",
"url": "https://bugzilla.suse.com/1195928"
},
{
"category": "self",
"summary": "SUSE Bug 1195947",
"url": "https://bugzilla.suse.com/1195947"
},
{
"category": "self",
"summary": "SUSE Bug 1195957",
"url": "https://bugzilla.suse.com/1195957"
},
{
"category": "self",
"summary": "SUSE Bug 1195995",
"url": "https://bugzilla.suse.com/1195995"
},
{
"category": "self",
"summary": "SUSE Bug 1196195",
"url": "https://bugzilla.suse.com/1196195"
},
{
"category": "self",
"summary": "SUSE Bug 1196235",
"url": "https://bugzilla.suse.com/1196235"
},
{
"category": "self",
"summary": "SUSE Bug 1196339",
"url": "https://bugzilla.suse.com/1196339"
},
{
"category": "self",
"summary": "SUSE Bug 1196400",
"url": "https://bugzilla.suse.com/1196400"
},
{
"category": "self",
"summary": "SUSE Bug 1196403",
"url": "https://bugzilla.suse.com/1196403"
},
{
"category": "self",
"summary": "SUSE Bug 1196516",
"url": "https://bugzilla.suse.com/1196516"
},
{
"category": "self",
"summary": "SUSE Bug 1196584",
"url": "https://bugzilla.suse.com/1196584"
},
{
"category": "self",
"summary": "SUSE Bug 1196601",
"url": "https://bugzilla.suse.com/1196601"
},
{
"category": "self",
"summary": "SUSE Bug 1196612",
"url": "https://bugzilla.suse.com/1196612"
},
{
"category": "self",
"summary": "SUSE Bug 1196776",
"url": "https://bugzilla.suse.com/1196776"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0001 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0002 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0492 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0516 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0847 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-25375 page",
"url": "https://www.suse.com/security/cve/CVE-2022-25375/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2022-03-08T18:02:41Z",
"generator": {
"date": "2022-03-08T18:02:41Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2022:0755-1",
"initial_release_date": "2022-03-08T18:02:41Z",
"revision_history": [
{
"date": "2022-03-08T18:02:41Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"product": {
"name": "kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"product_id": "kernel-devel-azure-5.3.18-150300.38.47.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"product": {
"name": "kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"product_id": "kernel-source-azure-5.3.18-150300.38.47.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product_id": "cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product_id": "dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product_id": "gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "kernel-azure-5.3.18-150300.38.47.1.x86_64",
"product_id": "kernel-azure-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"product_id": "kernel-azure-devel-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"product_id": "kernel-azure-extra-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"product_id": "kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"product_id": "kernel-azure-optional-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"product_id": "kernel-syms-azure-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product_id": "kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product_id": "ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product": {
"name": "reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"product_id": "reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "kernel-azure-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-5.3.18-150300.38.47.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch"
},
"product_reference": "kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-5.3.18-150300.38.47.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch"
},
"product_reference": "kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
},
"product_reference": "reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-0001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0001"
}
],
"notes": [
{
"category": "general",
"text": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0001",
"url": "https://www.suse.com/security/cve/CVE-2022-0001"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1196901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:02:41Z",
"details": "moderate"
}
],
"title": "CVE-2022-0001"
},
{
"cve": "CVE-2022-0002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0002"
}
],
"notes": [
{
"category": "general",
"text": "Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0002",
"url": "https://www.suse.com/security/cve/CVE-2022-0002"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2022-0002",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2022-0002",
"url": "https://bugzilla.suse.com/1196901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:02:41Z",
"details": "moderate"
}
],
"title": "CVE-2022-0002"
},
{
"cve": "CVE-2022-0492",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0492"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in the Linux kernel\u0027s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0492",
"url": "https://www.suse.com/security/cve/CVE-2022-0492"
},
{
"category": "external",
"summary": "SUSE Bug 1195543 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1195543"
},
{
"category": "external",
"summary": "SUSE Bug 1195908 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1195908"
},
{
"category": "external",
"summary": "SUSE Bug 1196612 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1196612"
},
{
"category": "external",
"summary": "SUSE Bug 1196776 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1196776"
},
{
"category": "external",
"summary": "SUSE Bug 1198615 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1198615"
},
{
"category": "external",
"summary": "SUSE Bug 1199255 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1199255"
},
{
"category": "external",
"summary": "SUSE Bug 1199615 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1199615"
},
{
"category": "external",
"summary": "SUSE Bug 1200084 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1200084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:02:41Z",
"details": "moderate"
}
],
"title": "CVE-2022-0492"
},
{
"cve": "CVE-2022-0516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0516"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel. This flaw allows a local attacker with a normal user privilege to obtain unauthorized memory write access. This flaw affects Linux kernel versions prior to 5.17-rc4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0516",
"url": "https://www.suse.com/security/cve/CVE-2022-0516"
},
{
"category": "external",
"summary": "SUSE Bug 1195516 for CVE-2022-0516",
"url": "https://bugzilla.suse.com/1195516"
},
{
"category": "external",
"summary": "SUSE Bug 1195947 for CVE-2022-0516",
"url": "https://bugzilla.suse.com/1195947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:02:41Z",
"details": "important"
}
],
"title": "CVE-2022-0516"
},
{
"cve": "CVE-2022-0847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0847"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the way the \"flags\" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0847",
"url": "https://www.suse.com/security/cve/CVE-2022-0847"
},
{
"category": "external",
"summary": "SUSE Bug 1196584 for CVE-2022-0847",
"url": "https://bugzilla.suse.com/1196584"
},
{
"category": "external",
"summary": "SUSE Bug 1196601 for CVE-2022-0847",
"url": "https://bugzilla.suse.com/1196601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:02:41Z",
"details": "important"
}
],
"title": "CVE-2022-0847"
},
{
"cve": "CVE-2022-25375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-25375"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-25375",
"url": "https://www.suse.com/security/cve/CVE-2022-25375"
},
{
"category": "external",
"summary": "SUSE Bug 1196235 for CVE-2022-25375",
"url": "https://bugzilla.suse.com/1196235"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-extra-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-livepatch-devel-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-azure-optional-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-source-azure-5.3.18-150300.38.47.1.noarch",
"openSUSE Leap 15.3:kernel-syms-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-azure-5.3.18-150300.38.47.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-azure-5.3.18-150300.38.47.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:02:41Z",
"details": "moderate"
}
],
"title": "CVE-2022-25375"
}
]
}
OPENSUSE-SU-2022:0760-1
Vulnerability from csaf_opensuse - Published: 2022-03-08 18:06 - Updated: 2022-03-08 18:06Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch: The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
Transient execution side-channel attacks attacking the Branch History Buffer (BHB),
named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated.
The following security bugs were fixed:
- CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580).
- CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580).
- CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584).
- CVE-2022-25375: The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory (bnc#1196235 ).
- CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543).
- CVE-2022-0516: Fixed missing check in ioctl related to KVM in s390 allows kernel memory read/write (bsc#1195516).
The following non-security bugs were fixed:
- ACPI/IORT: Check node revision for PMCG resources (git-fixes).
- ALSA: hda/realtek: Add missing fixup-model entry for Gigabyte X570 ALC1220 quirks (git-fixes).
- ALSA: hda/realtek: Add quirk for ASUS GU603 (git-fixes).
- ALSA: hda/realtek: Fix silent output on Gigabyte X570 Aorus Xtreme after reboot from Windows (git-fixes).
- ALSA: hda/realtek: Fix silent output on Gigabyte X570S Aorus Master (newer chipset) (git-fixes).
- ALSA: hda: Fix missing codec probe on Shenker Dock 15 (git-fixes).
- ALSA: hda: Fix regression on forced probe mask option (git-fixes).
- ASoC: Revert 'ASoC: mediatek: Check for error clk pointer' (git-fixes).
- ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw() (git-fixes).
- ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_range() (git-fixes).
- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() (git-fixes).
- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() (git-fixes).
- ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() (git-fixes).
- Align s390 NVME target options with other architectures (bsc#1188404, jsc#SLE-22494).
- Drop PCI xgene patch that caused a regression for mxl4 (bsc#1195352)
- EDAC/xgene: Fix deferred probing (bsc#1178134).
- HID:Add support for UGTABLET WP5540 (git-fixes).
- IB/cma: Do not send IGMP leaves for sendonly Multicast groups (git-fixes).
- IB/hfi1: Fix AIP early init panic (jsc#SLE-13208).
- KVM: remember position in kvm->vcpus array (bsc#1190972 LTC#194674).
- NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1195957).
- PM: hibernate: Remove register_nosave_region_late() (git-fixes).
- PM: s2idle: ACPI: Fix wakeup interrupts handling (git-fixes).
- RDMA/cma: Use correct address when leaving multicast group (bsc#1181147).
- RDMA/core: Always release restrack object (git-fixes)
- RDMA/cxgb4: check for ipv6 address properly while destroying listener (git-fixes)
- RDMA/siw: Release xarray entry (git-fixes)
- RDMA/ucma: Protect mc during concurrent multicast leaves (bsc#1181147).
- USB: serial: ch341: add support for GW Instek USB2.0-Serial devices (git-fixes).
- USB: serial: cp210x: add CPI Bulk Coin Recycler id (git-fixes).
- USB: serial: cp210x: add NCR Retail IO box id (git-fixes).
- USB: serial: ftdi_sio: add support for Brainboxes US-159/235/320 (git-fixes).
- USB: serial: mos7840: remove duplicated 0xac24 device ID (git-fixes).
- USB: serial: option: add ZTE MF286D modem (git-fixes).
- ata: libata-core: Disable TRIM on M88V29 (git-fixes).
- ax25: improve the incomplete fix to avoid UAF and NPD bugs (git-fixes).
- blk-mq: always allow reserved allocation in hctx_may_queue (bsc#1193787).
- blk-mq: avoid to iterate over stale request (bsc#1193787).
- blk-mq: clear stale request in tags->rq before freeing one request pool (bsc#1193787).
- blk-mq: clearing flush request reference in tags->rqs (bsc#1193787).
- blk-mq: do not grab rq's refcount in blk_mq_check_expired() (bsc#1193787 git-fixes).
- blk-mq: fix is_flush_rq (bsc#1193787 git-fixes).
- blk-mq: fix kernel panic during iterating over flush request (bsc#1193787 git-fixes).
- blk-mq: grab rq->refcount before calling ->fn in blk_mq_tagset_busy_iter (bsc#1193787).
- blk-mq: mark flush request as IDLE in flush_end_io() (bsc#1193787).
- blk-tag: Hide spin_lock (bsc#1193787).
- block: avoid double io accounting for flush request (bsc#1193787).
- block: do not send a rezise udev event for hidden block device (bsc#1193096).
- block: mark flush request as IDLE when it is really finished (bsc#1193787).
- bonding: pair enable_port with slave_arr_updates (git-fixes).
- bpf: Adjust BTF log size limit (git-fixes).
- bpf: Disallow BPF_LOG_KERNEL log level for bpf(BPF_BTF_LOAD) (git-fixes).
- btrfs: check for missing device in btrfs_trim_fs (bsc#1195701).
- btrfs: check worker before need_preemptive_reclaim (bsc#1196195).
- btrfs: do not do preemptive flushing if the majority is global rsv (bsc#1196195).
- btrfs: do not include the global rsv size in the preemptive used amount (bsc#1196195).
- btrfs: handle preemptive delalloc flushing slightly differently (bsc#1196195).
- btrfs: make sure SB_I_VERSION does not get unset by remount (bsc#1192210).
- btrfs: only clamp the first time we have to start flushing (bsc#1196195).
- btrfs: only ignore delalloc if delalloc is much smaller than ordered (bsc#1196195).
- btrfs: reduce the preemptive flushing threshold to 90% (bsc#1196195).
- btrfs: take into account global rsv in need_preemptive_reclaim (bsc#1196195).
- btrfs: use the global rsv size in the preemptive thresh calculation (bsc#1196195).
- ceph: properly put ceph_string reference after async create attempt (bsc#1195798).
- ceph: set pool_ns in new inode layout for async creates (bsc#1195799).
- drm/amdgpu: fix logic inversion in check (git-fixes).
- drm/i915/gvt: Make DRM_I915_GVT depend on X86 (git-fixes).
- drm/i915/gvt: clean up kernel-doc in gtt.c (git-fixes).
- drm/i915/opregion: check port number bounds for SWSCI display power state (git-fixes).
- drm/i915: Correctly populate use_sagv_wm for all pipes (git-fixes).
- drm/i915: Fix bw atomic check when switching between SAGV vs. no SAGV (git-fixes).
- drm/panel: simple: Assign data from panel_dpi_probe() correctly (git-fixes).
- drm/radeon: Fix backlight control on iMac 12,1 (git-fixes).
- drm/rockchip: dw_hdmi: Do not leave clock enabled in error case (git-fixes).
- drm/rockchip: vop: Correct RK3399 VOP register fields (git-fixes).
- drm/vc4: hdmi: Allow DBLCLK modes even if horz timing is odd (git-fixes).
- drm: panel-orientation-quirks: Add quirk for the 1Netbook OneXPlayer (git-fixes).
- ext4: check for inconsistent extents between index and leaf block (bsc#1194163 bsc#1196339).
- ext4: check for out-of-order index extents in ext4_valid_extent_entries() (bsc#1194163 bsc#1196339).
- ext4: prevent partial update of the extent blocks (bsc#1194163 bsc#1196339).
- gve: Add RX context (bsc#1191655).
- gve: Add a jumbo-frame device option (bsc#1191655).
- gve: Add consumed counts to ethtool stats (bsc#1191655).
- gve: Add optional metadata descriptor type GVE_TXD_MTD (bsc#1191655).
- gve: Correct order of processing device options (bsc#1191655).
- gve: Fix GFP flags when allocing pages (git-fixes).
- gve: Fix off by one in gve_tx_timeout() (bsc#1191655).
- gve: Implement packet continuation for RX (bsc#1191655).
- gve: Implement suspend/resume/shutdown (bsc#1191655).
- gve: Move the irq db indexes out of the ntfy block struct (bsc#1191655).
- gve: Recording rx queue before sending to napi (bsc#1191655).
- gve: Recover from queue stall due to missed IRQ (bsc#1191655).
- gve: Update gve_free_queue_page_list signature (bsc#1191655).
- gve: Use kvcalloc() instead of kvzalloc() (bsc#1191655).
- gve: fix for null pointer dereference (bsc#1191655).
- gve: fix the wrong AdminQ buffer queue index check (bsc#1176940).
- gve: fix unmatched u64_stats_update_end() (bsc#1191655).
- gve: remove memory barrier around seqno (bsc#1191655).
- i2c: brcmstb: fix support for DSL and CM variants (git-fixes).
- i40e: Fix for failed to init adminq while VF reset (git-fixes).
- i40e: Fix issue when maximum queues is exceeded (git-fixes).
- i40e: Fix queues reservation for XDP (git-fixes).
- i40e: Increase delay to 1 s after global EMP reset (git-fixes).
- i40e: fix unsigned stat widths (git-fixes).
- ibmvnic: Allow queueing resets during probe (bsc#1196516 ltc#196391).
- ibmvnic: clear fop when retrying probe (bsc#1196516 ltc#196391).
- ibmvnic: complete init_done on transport events (bsc#1196516 ltc#196391).
- ibmvnic: define flush_reset_queue helper (bsc#1196516 ltc#196391).
- ibmvnic: do not release napi in __ibmvnic_open() (bsc#1195668 ltc#195811).
- ibmvnic: free reset-work-item when flushing (bsc#1196516 ltc#196391).
- ibmvnic: init init_done_rc earlier (bsc#1196516 ltc#196391).
- ibmvnic: initialize rc before completing wait (bsc#1196516 ltc#196391).
- ibmvnic: register netdev after init of adapter (bsc#1196516 ltc#196391).
- ibmvnic: schedule failover only if vioctl fails (bsc#1196400 ltc#195815).
- ice: fix IPIP and SIT TSO offload (git-fixes).
- ice: fix an error code in ice_cfg_phy_fec() (jsc#SLE-12878).
- ima: Allow template selection with ima_template[_fmt]= after ima_hash= (git-fixes).
- ima: Do not print policy rule with inactive LSM labels (git-fixes).
- ima: Remove ima_policy file before directory (git-fixes).
- integrity: Make function integrity_add_key() static (git-fixes).
- integrity: check the return value of audit_log_start() (git-fixes).
- integrity: double check iint_cache was initialized (git-fixes).
- iommu/amd: Fix loop timeout issue in iommu_ga_log_enable() (git-fixes).
- iommu/amd: Remove useless irq affinity notifier (git-fixes).
- iommu/amd: Restore GA log/tail pointer on host resume (git-fixes).
- iommu/amd: X2apic mode: mask/unmask interrupts on suspend/resume (git-fixes).
- iommu/amd: X2apic mode: re-enable after resume (git-fixes).
- iommu/amd: X2apic mode: setup the INTX registers on mask/unmask (git-fixes).
- iommu/io-pgtable-arm-v7s: Add error handle for page table allocation failure (git-fixes).
- iommu/io-pgtable-arm: Fix table descriptor paddr formatting (git-fixes).
- iommu/iova: Fix race between FQ timeout and teardown (git-fixes).
- iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() (git-fixes).
- iwlwifi: fix use-after-free (git-fixes).
- iwlwifi: pcie: fix locking when 'HW not ready' (git-fixes).
- iwlwifi: pcie: gen2: fix locking when 'HW not ready' (git-fixes).
- ixgbevf: Require large buffers for build_skb on 82599VF (git-fixes).
- kABI fixup after adding vcpu_idx to struct kvm_cpu (bsc#1190972 LTC#194674).
- kABI: Fix kABI for AMD IOMMU driver (git-fixes).
- kabi: Hide changes to s390/AP structures (jsc#SLE-20807).
- lib/iov_iter: initialize 'flags' in new pipe_buffer (bsc#1196584).
- libsubcmd: Fix use-after-free for realloc(..., 0) (git-fixes).
- md/raid5: fix oops during stripe resizing (bsc#1181588).
- misc: fastrpc: avoid double fput() on failed usercopy (git-fixes).
- mmc: sdhci-of-esdhc: Check for error num after setting mask (git-fixes).
- mtd: rawnand: brcmnand: Fixed incorrect sub-page ECC status (git-fixes).
- mtd: rawnand: gpmi: do not leak PM reference in error path (git-fixes).
- mtd: rawnand: qcom: Fix clock sequencing in qcom_nandc_probe() (git-fixes).
- net/ibmvnic: Cleanup workaround doing an EOI after partition migration (bsc#1089644 ltc#166495 ltc#165544 git-fixes).
- net/mlx5e: Fix handling of wrong devices during bond netevent (jsc#SLE-15172).
- net: macb: Align the dma and coherent dma masks (git-fixes).
- net: mdio: aspeed: Add missing MODULE_DEVICE_TABLE (bsc#1176447).
- net: phy: marvell: Fix MDI-x polarity setting in 88e1118-compatible PHYs (git-fixes).
- net: phy: marvell: Fix RGMII Tx/Rx delays setting in 88e1121-compatible PHYs (git-fixes).
- net: phy: marvell: configure RGMII delays for 88E1118 (git-fixes).
- net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes).
- nfp: flower: fix ida_idx not being released (bsc#1154353).
- nfsd: allow delegation state ids to be revoked and then freed (bsc#1192483).
- nfsd: allow lock state ids to be revoked and then freed (bsc#1192483).
- nfsd: allow open state ids to be revoked and then freed (bsc#1192483).
- nfsd: do not admin-revoke NSv4.0 state ids (bsc#1192483).
- nfsd: prepare for supporting admin-revocation of state (bsc#1192483).
- nvme-fabrics: fix state check in nvmf_ctlr_matches_baseopts() (bsc#1195012).
- nvme: also mark passthrough-only namespaces ready in nvme_update_ns_info (git-fixes).
- nvme: do not return an error from nvme_configure_metadata (git-fixes).
- nvme: let namespace probing continue for unsupported features (git-fixes).
- powerpc/64: Move paca allocation later in boot (bsc#1190812).
- powerpc/64s: Fix debugfs_simple_attr.cocci warnings (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).
- powerpc/pseries/ddw: Revert 'Extend upper limit for huge DMA window for persistent memory' (bsc#1195995 ltc#196394).
- powerpc/pseries: read the lpar name from the firmware (bsc#1187716 ltc#193451).
- powerpc: Set crashkernel offset to mid of RMA region (bsc#1190812).
- powerpc: add link stack flush mitigation status in debugfs (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).
- s390/AP: support new dynamic AP bus size limit (jsc#SLE-20807).
- s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (git-fixes).
- s390/bpf: Fix optimizing out zero-extensions (git-fixes).
- s390/cio: make ccw_device_dma_* more robust (bsc#1193243 LTC#195549).
- s390/cio: verify the driver availability for path_event call (bsc#1195928 LTC#196418).
- s390/cpumf: Support for CPU Measurement Facility CSVN 7 (bsc#1195081 LTC#196088).
- s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (bsc#1195081 LTC#196088).
- s390/pci: add s390_iommu_aperture kernel parameter (bsc#1193233 LTC#195540).
- s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194967 LTC#196028).
- s390/protvirt: fix error return code in uv_info_init() (jsc#SLE-22135).
- s390/sclp: fix Secure-IPL facility detection (bsc#1191741 LTC#194816).
- s390/uv: add prot virt guest/host indication files (jsc#SLE-22135).
- s390/uv: fix prot virt host indication compilation (jsc#SLE-22135).
- scsi: core: Add a new error code DID_TRANSPORT_MARGINAL in scsi.h (bsc#1195506).
- scsi: core: Add limitless cmd retry support (bsc#1195506).
- scsi: core: No retries on abort success (bsc#1195506).
- scsi: kABI fix for 'eh_should_retry_cmd' (bsc#1195506).
- scsi: lpfc: Add support for eh_should_retry_cmd() (bsc#1195506).
- scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop (bsc#1189126).
- scsi: qla2xxx: Add devids and conditionals for 28xx (bsc#1195823).
- scsi: qla2xxx: Add marginal path handling support (bsc#1195506).
- scsi: qla2xxx: Add ql2xnvme_queues module param to configure number of NVMe queues (bsc#1195823).
- scsi: qla2xxx: Add qla2x00_async_done() for async routines (bsc#1195823).
- scsi: qla2xxx: Add retry for exec firmware (bsc#1195823).
- scsi: qla2xxx: Check for firmware dump already collected (bsc#1195823).
- scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters (bsc#1195823).
- scsi: qla2xxx: Fix device reconnect in loop topology (bsc#1195823).
- scsi: qla2xxx: Fix premature hw access after PCI error (bsc#1195823).
- scsi: qla2xxx: Fix scheduling while atomic (bsc#1195823).
- scsi: qla2xxx: Fix stuck session in gpdb (bsc#1195823).
- scsi: qla2xxx: Fix unmap of already freed sgl (bsc#1195823).
- scsi: qla2xxx: Fix warning for missing error code (bsc#1195823).
- scsi: qla2xxx: Fix warning message due to adisc being flushed (bsc#1195823).
- scsi: qla2xxx: Fix wrong FDMI data for 64G adapter (bsc#1195823).
- scsi: qla2xxx: Implement ref count for SRB (bsc#1195823).
- scsi: qla2xxx: Refactor asynchronous command initialization (bsc#1195823).
- scsi: qla2xxx: Remove a declaration (bsc#1195823).
- scsi: qla2xxx: Remove unused qla_sess_op_cmd_list from scsi_qla_host_t (bsc#1195823).
- scsi: qla2xxx: Return -ENOMEM if kzalloc() fails (bsc#1195823).
- scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (bsc#1195823).
- scsi: qla2xxx: Update version to 10.02.07.200-k (bsc#1195823).
- scsi: qla2xxx: Update version to 10.02.07.300-k (bsc#1195823).
- scsi: qla2xxx: edif: Fix clang warning (bsc#1195823).
- scsi: qla2xxx: edif: Fix inconsistent check of db_flags (bsc#1195823).
- scsi: qla2xxx: edif: Reduce connection thrash (bsc#1195823).
- scsi: qla2xxx: edif: Replace list_for_each_safe with list_for_each_entry_safe (bsc#1195823).
- scsi: qla2xxx: edif: Tweak trace message (bsc#1195823).
- scsi: scsi_transport_fc: Add a new rport state FC_PORTSTATE_MARGINAL (bsc#1195506).
- scsi: scsi_transport_fc: Add store capability to rport port_state in sysfs (bsc#1195506).
- scsi: target: iscsi: Fix cmd abort fabric stop race (bsc#1195286).
- scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (bsc#1195378 LTC#196244).
- scsi_transport_fc: kabi fix blank out FC_PORTSTATE_MARGINAL (bsc#1195506).
- staging/fbtft: Fix backlight (git-fixes).
- staging: fbtft: Fix error path in fbtft_driver_module_init() (git-fixes).
- tracing: Do not inc err_log entry count if entry allocation fails (git-fixes).
- tracing: Dump stacktrace trigger to the corresponding instance (git-fixes).
- tracing: Fix smatch warning for null glob in event_hist_trigger_parse() (git-fixes).
- tracing: Have traceon and traceoff trigger honor the instance (git-fixes).
- tracing: Propagate is_signed to expression (git-fixes).
- usb: dwc2: Fix NULL qh in dwc2_queue_transaction (git-fixes).
- usb: dwc2: gadget: do not try to disable ep0 in dwc2_hsotg_suspend (git-fixes).
- usb: dwc3: do not set gadget->is_otg flag (git-fixes).
- usb: dwc3: gadget: Prevent core from processing stale TRBs (git-fixes).
- usb: f_fs: Fix use-after-free for epfile (git-fixes).
- usb: gadget: f_uac2: Define specific wTerminalType (git-fixes).
- usb: gadget: rndis: check size of RNDIS_MSG_SET command (git-fixes).
- usb: gadget: s3c: remove unused 'udc' variable (git-fixes).
- usb: gadget: udc: renesas_usb3: Fix host to USB_ROLE_NONE transition (git-fixes).
- usb: host: ehci-tegra: Fix error handling in tegra_ehci_probe() (git-fixes).
- usb: ulpi: Call of_node_put correctly (git-fixes).
- usb: ulpi: Move of_node_put to ulpi_dev_release (git-fixes).
Patchnames: openSUSE-SLE-15.3-2022-760,openSUSE-SLE-15.4-2022-760
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.6 (Medium)
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
143 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
89 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1089644 | self |
| https://bugzilla.suse.com/1154353 | self |
| https://bugzilla.suse.com/1157038 | self |
| https://bugzilla.suse.com/1157923 | self |
| https://bugzilla.suse.com/1176447 | self |
| https://bugzilla.suse.com/1176940 | self |
| https://bugzilla.suse.com/1178134 | self |
| https://bugzilla.suse.com/1181147 | self |
| https://bugzilla.suse.com/1181588 | self |
| https://bugzilla.suse.com/1183872 | self |
| https://bugzilla.suse.com/1187716 | self |
| https://bugzilla.suse.com/1188404 | self |
| https://bugzilla.suse.com/1189126 | self |
| https://bugzilla.suse.com/1190812 | self |
| https://bugzilla.suse.com/1190972 | self |
| https://bugzilla.suse.com/1191580 | self |
| https://bugzilla.suse.com/1191655 | self |
| https://bugzilla.suse.com/1191741 | self |
| https://bugzilla.suse.com/1192210 | self |
| https://bugzilla.suse.com/1192483 | self |
| https://bugzilla.suse.com/1193096 | self |
| https://bugzilla.suse.com/1193233 | self |
| https://bugzilla.suse.com/1193243 | self |
| https://bugzilla.suse.com/1193787 | self |
| https://bugzilla.suse.com/1194163 | self |
| https://bugzilla.suse.com/1194967 | self |
| https://bugzilla.suse.com/1195012 | self |
| https://bugzilla.suse.com/1195081 | self |
| https://bugzilla.suse.com/1195286 | self |
| https://bugzilla.suse.com/1195352 | self |
| https://bugzilla.suse.com/1195378 | self |
| https://bugzilla.suse.com/1195506 | self |
| https://bugzilla.suse.com/1195516 | self |
| https://bugzilla.suse.com/1195543 | self |
| https://bugzilla.suse.com/1195668 | self |
| https://bugzilla.suse.com/1195701 | self |
| https://bugzilla.suse.com/1195798 | self |
| https://bugzilla.suse.com/1195799 | self |
| https://bugzilla.suse.com/1195823 | self |
| https://bugzilla.suse.com/1195908 | self |
| https://bugzilla.suse.com/1195928 | self |
| https://bugzilla.suse.com/1195947 | self |
| https://bugzilla.suse.com/1195957 | self |
| https://bugzilla.suse.com/1195995 | self |
| https://bugzilla.suse.com/1196195 | self |
| https://bugzilla.suse.com/1196235 | self |
| https://bugzilla.suse.com/1196339 | self |
| https://bugzilla.suse.com/1196373 | self |
| https://bugzilla.suse.com/1196400 | self |
| https://bugzilla.suse.com/1196403 | self |
| https://bugzilla.suse.com/1196516 | self |
| https://bugzilla.suse.com/1196584 | self |
| https://bugzilla.suse.com/1196585 | self |
| https://bugzilla.suse.com/1196601 | self |
| https://bugzilla.suse.com/1196612 | self |
| https://bugzilla.suse.com/1196776 | self |
| https://www.suse.com/security/cve/CVE-2022-0001/ | self |
| https://www.suse.com/security/cve/CVE-2022-0002/ | self |
| https://www.suse.com/security/cve/CVE-2022-0492/ | self |
| https://www.suse.com/security/cve/CVE-2022-0516/ | self |
| https://www.suse.com/security/cve/CVE-2022-0847/ | self |
| https://www.suse.com/security/cve/CVE-2022-25375/ | self |
| https://www.suse.com/security/cve/CVE-2022-0001 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
| https://www.suse.com/security/cve/CVE-2022-0002 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
| https://www.suse.com/security/cve/CVE-2022-0492 | external |
| https://bugzilla.suse.com/1195543 | external |
| https://bugzilla.suse.com/1195908 | external |
| https://bugzilla.suse.com/1196612 | external |
| https://bugzilla.suse.com/1196776 | external |
| https://bugzilla.suse.com/1198615 | external |
| https://bugzilla.suse.com/1199255 | external |
| https://bugzilla.suse.com/1199615 | external |
| https://bugzilla.suse.com/1200084 | external |
| https://www.suse.com/security/cve/CVE-2022-0516 | external |
| https://bugzilla.suse.com/1195516 | external |
| https://bugzilla.suse.com/1195947 | external |
| https://www.suse.com/security/cve/CVE-2022-0847 | external |
| https://bugzilla.suse.com/1196584 | external |
| https://bugzilla.suse.com/1196601 | external |
| https://www.suse.com/security/cve/CVE-2022-25375 | external |
| https://bugzilla.suse.com/1196235 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.\n\n\nTransient execution side-channel attacks attacking the Branch History Buffer (BHB),\nnamed \u0027Branch Target Injection\u0027 and \u0027Intra-Mode Branch History Injection\u0027 are now mitigated.\n\nThe following security bugs were fixed:\n\n- CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580).\n- CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580).\n- CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584).\n- CVE-2022-25375: The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory (bnc#1196235 ).\n- CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543).\n- CVE-2022-0516: Fixed missing check in ioctl related to KVM in s390 allows kernel memory read/write (bsc#1195516).\n\nThe following non-security bugs were fixed:\n\n- ACPI/IORT: Check node revision for PMCG resources (git-fixes).\n- ALSA: hda/realtek: Add missing fixup-model entry for Gigabyte X570 ALC1220 quirks (git-fixes).\n- ALSA: hda/realtek: Add quirk for ASUS GU603 (git-fixes).\n- ALSA: hda/realtek: Fix silent output on Gigabyte X570 Aorus Xtreme after reboot from Windows (git-fixes).\n- ALSA: hda/realtek: Fix silent output on Gigabyte X570S Aorus Master (newer chipset) (git-fixes).\n- ALSA: hda: Fix missing codec probe on Shenker Dock 15 (git-fixes).\n- ALSA: hda: Fix regression on forced probe mask option (git-fixes).\n- ASoC: Revert \u0027ASoC: mediatek: Check for error clk pointer\u0027 (git-fixes).\n- ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw() (git-fixes).\n- ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_range() (git-fixes).\n- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() (git-fixes).\n- ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() (git-fixes).\n- ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() (git-fixes).\n- Align s390 NVME target options with other architectures (bsc#1188404, jsc#SLE-22494).\n- Drop PCI xgene patch that caused a regression for mxl4 (bsc#1195352)\n- EDAC/xgene: Fix deferred probing (bsc#1178134).\n- HID:Add support for UGTABLET WP5540 (git-fixes).\n- IB/cma: Do not send IGMP leaves for sendonly Multicast groups (git-fixes).\n- IB/hfi1: Fix AIP early init panic (jsc#SLE-13208).\n- KVM: remember position in kvm-\u003evcpus array (bsc#1190972 LTC#194674).\n- NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1195957).\n- PM: hibernate: Remove register_nosave_region_late() (git-fixes).\n- PM: s2idle: ACPI: Fix wakeup interrupts handling (git-fixes).\n- RDMA/cma: Use correct address when leaving multicast group (bsc#1181147).\n- RDMA/core: Always release restrack object (git-fixes)\n- RDMA/cxgb4: check for ipv6 address properly while destroying listener (git-fixes)\n- RDMA/siw: Release xarray entry (git-fixes)\n- RDMA/ucma: Protect mc during concurrent multicast leaves (bsc#1181147).\n- USB: serial: ch341: add support for GW Instek USB2.0-Serial devices (git-fixes).\n- USB: serial: cp210x: add CPI Bulk Coin Recycler id (git-fixes).\n- USB: serial: cp210x: add NCR Retail IO box id (git-fixes).\n- USB: serial: ftdi_sio: add support for Brainboxes US-159/235/320 (git-fixes).\n- USB: serial: mos7840: remove duplicated 0xac24 device ID (git-fixes).\n- USB: serial: option: add ZTE MF286D modem (git-fixes).\n- ata: libata-core: Disable TRIM on M88V29 (git-fixes).\n- ax25: improve the incomplete fix to avoid UAF and NPD bugs (git-fixes).\n- blk-mq: always allow reserved allocation in hctx_may_queue (bsc#1193787).\n- blk-mq: avoid to iterate over stale request (bsc#1193787).\n- blk-mq: clear stale request in tags-\u003erq before freeing one request pool (bsc#1193787).\n- blk-mq: clearing flush request reference in tags-\u003erqs (bsc#1193787).\n- blk-mq: do not grab rq\u0027s refcount in blk_mq_check_expired() (bsc#1193787 git-fixes).\n- blk-mq: fix is_flush_rq (bsc#1193787 git-fixes).\n- blk-mq: fix kernel panic during iterating over flush request (bsc#1193787 git-fixes).\n- blk-mq: grab rq-\u003erefcount before calling -\u003efn in blk_mq_tagset_busy_iter (bsc#1193787).\n- blk-mq: mark flush request as IDLE in flush_end_io() (bsc#1193787).\n- blk-tag: Hide spin_lock (bsc#1193787).\n- block: avoid double io accounting for flush request (bsc#1193787).\n- block: do not send a rezise udev event for hidden block device (bsc#1193096).\n- block: mark flush request as IDLE when it is really finished (bsc#1193787).\n- bonding: pair enable_port with slave_arr_updates (git-fixes).\n- bpf: Adjust BTF log size limit (git-fixes).\n- bpf: Disallow BPF_LOG_KERNEL log level for bpf(BPF_BTF_LOAD) (git-fixes).\n- btrfs: check for missing device in btrfs_trim_fs (bsc#1195701).\n- btrfs: check worker before need_preemptive_reclaim (bsc#1196195).\n- btrfs: do not do preemptive flushing if the majority is global rsv (bsc#1196195).\n- btrfs: do not include the global rsv size in the preemptive used amount (bsc#1196195).\n- btrfs: handle preemptive delalloc flushing slightly differently (bsc#1196195).\n- btrfs: make sure SB_I_VERSION does not get unset by remount (bsc#1192210).\n- btrfs: only clamp the first time we have to start flushing (bsc#1196195).\n- btrfs: only ignore delalloc if delalloc is much smaller than ordered (bsc#1196195).\n- btrfs: reduce the preemptive flushing threshold to 90% (bsc#1196195).\n- btrfs: take into account global rsv in need_preemptive_reclaim (bsc#1196195).\n- btrfs: use the global rsv size in the preemptive thresh calculation (bsc#1196195).\n- ceph: properly put ceph_string reference after async create attempt (bsc#1195798).\n- ceph: set pool_ns in new inode layout for async creates (bsc#1195799).\n- drm/amdgpu: fix logic inversion in check (git-fixes).\n- drm/i915/gvt: Make DRM_I915_GVT depend on X86 (git-fixes).\n- drm/i915/gvt: clean up kernel-doc in gtt.c (git-fixes).\n- drm/i915/opregion: check port number bounds for SWSCI display power state (git-fixes).\n- drm/i915: Correctly populate use_sagv_wm for all pipes (git-fixes).\n- drm/i915: Fix bw atomic check when switching between SAGV vs. no SAGV (git-fixes).\n- drm/panel: simple: Assign data from panel_dpi_probe() correctly (git-fixes).\n- drm/radeon: Fix backlight control on iMac 12,1 (git-fixes).\n- drm/rockchip: dw_hdmi: Do not leave clock enabled in error case (git-fixes).\n- drm/rockchip: vop: Correct RK3399 VOP register fields (git-fixes).\n- drm/vc4: hdmi: Allow DBLCLK modes even if horz timing is odd (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for the 1Netbook OneXPlayer (git-fixes).\n- ext4: check for inconsistent extents between index and leaf block (bsc#1194163 bsc#1196339).\n- ext4: check for out-of-order index extents in ext4_valid_extent_entries() (bsc#1194163 bsc#1196339).\n- ext4: prevent partial update of the extent blocks (bsc#1194163 bsc#1196339).\n- gve: Add RX context (bsc#1191655).\n- gve: Add a jumbo-frame device option (bsc#1191655).\n- gve: Add consumed counts to ethtool stats (bsc#1191655).\n- gve: Add optional metadata descriptor type GVE_TXD_MTD (bsc#1191655).\n- gve: Correct order of processing device options (bsc#1191655).\n- gve: Fix GFP flags when allocing pages (git-fixes).\n- gve: Fix off by one in gve_tx_timeout() (bsc#1191655).\n- gve: Implement packet continuation for RX (bsc#1191655).\n- gve: Implement suspend/resume/shutdown (bsc#1191655).\n- gve: Move the irq db indexes out of the ntfy block struct (bsc#1191655).\n- gve: Recording rx queue before sending to napi (bsc#1191655).\n- gve: Recover from queue stall due to missed IRQ (bsc#1191655).\n- gve: Update gve_free_queue_page_list signature (bsc#1191655).\n- gve: Use kvcalloc() instead of kvzalloc() (bsc#1191655).\n- gve: fix for null pointer dereference (bsc#1191655).\n- gve: fix the wrong AdminQ buffer queue index check (bsc#1176940).\n- gve: fix unmatched u64_stats_update_end() (bsc#1191655).\n- gve: remove memory barrier around seqno (bsc#1191655).\n- i2c: brcmstb: fix support for DSL and CM variants (git-fixes).\n- i40e: Fix for failed to init adminq while VF reset (git-fixes).\n- i40e: Fix issue when maximum queues is exceeded (git-fixes).\n- i40e: Fix queues reservation for XDP (git-fixes).\n- i40e: Increase delay to 1 s after global EMP reset (git-fixes).\n- i40e: fix unsigned stat widths (git-fixes).\n- ibmvnic: Allow queueing resets during probe (bsc#1196516 ltc#196391).\n- ibmvnic: clear fop when retrying probe (bsc#1196516 ltc#196391).\n- ibmvnic: complete init_done on transport events (bsc#1196516 ltc#196391).\n- ibmvnic: define flush_reset_queue helper (bsc#1196516 ltc#196391).\n- ibmvnic: do not release napi in __ibmvnic_open() (bsc#1195668 ltc#195811).\n- ibmvnic: free reset-work-item when flushing (bsc#1196516 ltc#196391).\n- ibmvnic: init init_done_rc earlier (bsc#1196516 ltc#196391).\n- ibmvnic: initialize rc before completing wait (bsc#1196516 ltc#196391).\n- ibmvnic: register netdev after init of adapter (bsc#1196516 ltc#196391).\n- ibmvnic: schedule failover only if vioctl fails (bsc#1196400 ltc#195815).\n- ice: fix IPIP and SIT TSO offload (git-fixes).\n- ice: fix an error code in ice_cfg_phy_fec() (jsc#SLE-12878).\n- ima: Allow template selection with ima_template[_fmt]= after ima_hash= (git-fixes).\n- ima: Do not print policy rule with inactive LSM labels (git-fixes).\n- ima: Remove ima_policy file before directory (git-fixes).\n- integrity: Make function integrity_add_key() static (git-fixes).\n- integrity: check the return value of audit_log_start() (git-fixes).\n- integrity: double check iint_cache was initialized (git-fixes).\n- iommu/amd: Fix loop timeout issue in iommu_ga_log_enable() (git-fixes).\n- iommu/amd: Remove useless irq affinity notifier (git-fixes).\n- iommu/amd: Restore GA log/tail pointer on host resume (git-fixes).\n- iommu/amd: X2apic mode: mask/unmask interrupts on suspend/resume (git-fixes).\n- iommu/amd: X2apic mode: re-enable after resume (git-fixes).\n- iommu/amd: X2apic mode: setup the INTX registers on mask/unmask (git-fixes).\n- iommu/io-pgtable-arm-v7s: Add error handle for page table allocation failure (git-fixes).\n- iommu/io-pgtable-arm: Fix table descriptor paddr formatting (git-fixes).\n- iommu/iova: Fix race between FQ timeout and teardown (git-fixes).\n- iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() (git-fixes).\n- iwlwifi: fix use-after-free (git-fixes).\n- iwlwifi: pcie: fix locking when \u0027HW not ready\u0027 (git-fixes).\n- iwlwifi: pcie: gen2: fix locking when \u0027HW not ready\u0027 (git-fixes).\n- ixgbevf: Require large buffers for build_skb on 82599VF (git-fixes).\n- kABI fixup after adding vcpu_idx to struct kvm_cpu (bsc#1190972 LTC#194674).\n- kABI: Fix kABI for AMD IOMMU driver (git-fixes).\n- kabi: Hide changes to s390/AP structures (jsc#SLE-20807).\n- lib/iov_iter: initialize \u0027flags\u0027 in new pipe_buffer (bsc#1196584).\n- libsubcmd: Fix use-after-free for realloc(..., 0) (git-fixes).\n- md/raid5: fix oops during stripe resizing (bsc#1181588).\n- misc: fastrpc: avoid double fput() on failed usercopy (git-fixes).\n- mmc: sdhci-of-esdhc: Check for error num after setting mask (git-fixes).\n- mtd: rawnand: brcmnand: Fixed incorrect sub-page ECC status (git-fixes).\n- mtd: rawnand: gpmi: do not leak PM reference in error path (git-fixes).\n- mtd: rawnand: qcom: Fix clock sequencing in qcom_nandc_probe() (git-fixes).\n- net/ibmvnic: Cleanup workaround doing an EOI after partition migration (bsc#1089644 ltc#166495 ltc#165544 git-fixes).\n- net/mlx5e: Fix handling of wrong devices during bond netevent (jsc#SLE-15172).\n- net: macb: Align the dma and coherent dma masks (git-fixes).\n- net: mdio: aspeed: Add missing MODULE_DEVICE_TABLE (bsc#1176447).\n- net: phy: marvell: Fix MDI-x polarity setting in 88e1118-compatible PHYs (git-fixes).\n- net: phy: marvell: Fix RGMII Tx/Rx delays setting in 88e1121-compatible PHYs (git-fixes).\n- net: phy: marvell: configure RGMII delays for 88E1118 (git-fixes).\n- net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes).\n- nfp: flower: fix ida_idx not being released (bsc#1154353).\n- nfsd: allow delegation state ids to be revoked and then freed (bsc#1192483).\n- nfsd: allow lock state ids to be revoked and then freed (bsc#1192483).\n- nfsd: allow open state ids to be revoked and then freed (bsc#1192483).\n- nfsd: do not admin-revoke NSv4.0 state ids (bsc#1192483).\n- nfsd: prepare for supporting admin-revocation of state (bsc#1192483).\n- nvme-fabrics: fix state check in nvmf_ctlr_matches_baseopts() (bsc#1195012).\n- nvme: also mark passthrough-only namespaces ready in nvme_update_ns_info (git-fixes).\n- nvme: do not return an error from nvme_configure_metadata (git-fixes).\n- nvme: let namespace probing continue for unsupported features (git-fixes).\n- powerpc/64: Move paca allocation later in boot (bsc#1190812).\n- powerpc/64s: Fix debugfs_simple_attr.cocci warnings (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).\n- powerpc/pseries/ddw: Revert \u0027Extend upper limit for huge DMA window for persistent memory\u0027 (bsc#1195995 ltc#196394).\n- powerpc/pseries: read the lpar name from the firmware (bsc#1187716 ltc#193451).\n- powerpc: Set crashkernel offset to mid of RMA region (bsc#1190812).\n- powerpc: add link stack flush mitigation status in debugfs (bsc#1157038 bsc#1157923 ltc#182612 git-fixes).\n- s390/AP: support new dynamic AP bus size limit (jsc#SLE-20807).\n- s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (git-fixes).\n- s390/bpf: Fix optimizing out zero-extensions (git-fixes).\n- s390/cio: make ccw_device_dma_* more robust (bsc#1193243 LTC#195549).\n- s390/cio: verify the driver availability for path_event call (bsc#1195928 LTC#196418).\n- s390/cpumf: Support for CPU Measurement Facility CSVN 7 (bsc#1195081 LTC#196088).\n- s390/cpumf: Support for CPU Measurement Sampling Facility LS bit (bsc#1195081 LTC#196088).\n- s390/pci: add s390_iommu_aperture kernel parameter (bsc#1193233 LTC#195540).\n- s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1194967 LTC#196028).\n- s390/protvirt: fix error return code in uv_info_init() (jsc#SLE-22135).\n- s390/sclp: fix Secure-IPL facility detection (bsc#1191741 LTC#194816).\n- s390/uv: add prot virt guest/host indication files (jsc#SLE-22135).\n- s390/uv: fix prot virt host indication compilation (jsc#SLE-22135).\n- scsi: core: Add a new error code DID_TRANSPORT_MARGINAL in scsi.h (bsc#1195506).\n- scsi: core: Add limitless cmd retry support (bsc#1195506).\n- scsi: core: No retries on abort success (bsc#1195506).\n- scsi: kABI fix for \u0027eh_should_retry_cmd\u0027 (bsc#1195506).\n- scsi: lpfc: Add support for eh_should_retry_cmd() (bsc#1195506).\n- scsi: lpfc: Fix pt2pt NVMe PRLI reject LOGO loop (bsc#1189126).\n- scsi: qla2xxx: Add devids and conditionals for 28xx (bsc#1195823).\n- scsi: qla2xxx: Add marginal path handling support (bsc#1195506).\n- scsi: qla2xxx: Add ql2xnvme_queues module param to configure number of NVMe queues (bsc#1195823).\n- scsi: qla2xxx: Add qla2x00_async_done() for async routines (bsc#1195823).\n- scsi: qla2xxx: Add retry for exec firmware (bsc#1195823).\n- scsi: qla2xxx: Check for firmware dump already collected (bsc#1195823).\n- scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters (bsc#1195823).\n- scsi: qla2xxx: Fix device reconnect in loop topology (bsc#1195823).\n- scsi: qla2xxx: Fix premature hw access after PCI error (bsc#1195823).\n- scsi: qla2xxx: Fix scheduling while atomic (bsc#1195823).\n- scsi: qla2xxx: Fix stuck session in gpdb (bsc#1195823).\n- scsi: qla2xxx: Fix unmap of already freed sgl (bsc#1195823).\n- scsi: qla2xxx: Fix warning for missing error code (bsc#1195823).\n- scsi: qla2xxx: Fix warning message due to adisc being flushed (bsc#1195823).\n- scsi: qla2xxx: Fix wrong FDMI data for 64G adapter (bsc#1195823).\n- scsi: qla2xxx: Implement ref count for SRB (bsc#1195823).\n- scsi: qla2xxx: Refactor asynchronous command initialization (bsc#1195823).\n- scsi: qla2xxx: Remove a declaration (bsc#1195823).\n- scsi: qla2xxx: Remove unused qla_sess_op_cmd_list from scsi_qla_host_t (bsc#1195823).\n- scsi: qla2xxx: Return -ENOMEM if kzalloc() fails (bsc#1195823).\n- scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (bsc#1195823).\n- scsi: qla2xxx: Update version to 10.02.07.200-k (bsc#1195823).\n- scsi: qla2xxx: Update version to 10.02.07.300-k (bsc#1195823).\n- scsi: qla2xxx: edif: Fix clang warning (bsc#1195823).\n- scsi: qla2xxx: edif: Fix inconsistent check of db_flags (bsc#1195823).\n- scsi: qla2xxx: edif: Reduce connection thrash (bsc#1195823).\n- scsi: qla2xxx: edif: Replace list_for_each_safe with list_for_each_entry_safe (bsc#1195823).\n- scsi: qla2xxx: edif: Tweak trace message (bsc#1195823).\n- scsi: scsi_transport_fc: Add a new rport state FC_PORTSTATE_MARGINAL (bsc#1195506).\n- scsi: scsi_transport_fc: Add store capability to rport port_state in sysfs (bsc#1195506).\n- scsi: target: iscsi: Fix cmd abort fabric stop race (bsc#1195286).\n- scsi: zfcp: Fix failed recovery on gone remote port with non-NPIV FCP devices (bsc#1195378 LTC#196244).\n- scsi_transport_fc: kabi fix blank out FC_PORTSTATE_MARGINAL (bsc#1195506).\n- staging/fbtft: Fix backlight (git-fixes).\n- staging: fbtft: Fix error path in fbtft_driver_module_init() (git-fixes).\n- tracing: Do not inc err_log entry count if entry allocation fails (git-fixes).\n- tracing: Dump stacktrace trigger to the corresponding instance (git-fixes).\n- tracing: Fix smatch warning for null glob in event_hist_trigger_parse() (git-fixes).\n- tracing: Have traceon and traceoff trigger honor the instance (git-fixes).\n- tracing: Propagate is_signed to expression (git-fixes).\n- usb: dwc2: Fix NULL qh in dwc2_queue_transaction (git-fixes).\n- usb: dwc2: gadget: do not try to disable ep0 in dwc2_hsotg_suspend (git-fixes).\n- usb: dwc3: do not set gadget-\u003eis_otg flag (git-fixes).\n- usb: dwc3: gadget: Prevent core from processing stale TRBs (git-fixes).\n- usb: f_fs: Fix use-after-free for epfile (git-fixes).\n- usb: gadget: f_uac2: Define specific wTerminalType (git-fixes).\n- usb: gadget: rndis: check size of RNDIS_MSG_SET command (git-fixes).\n- usb: gadget: s3c: remove unused \u0027udc\u0027 variable (git-fixes).\n- usb: gadget: udc: renesas_usb3: Fix host to USB_ROLE_NONE transition (git-fixes).\n- usb: host: ehci-tegra: Fix error handling in tegra_ehci_probe() (git-fixes).\n- usb: ulpi: Call of_node_put correctly (git-fixes).\n- usb: ulpi: Move of_node_put to ulpi_dev_release (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2022-760,openSUSE-SLE-15.4-2022-760",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_0760-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2022:0760-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GIEQJF6RAZADJBWJQFLIHOBULB4E2C7K/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2022:0760-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GIEQJF6RAZADJBWJQFLIHOBULB4E2C7K/"
},
{
"category": "self",
"summary": "SUSE Bug 1089644",
"url": "https://bugzilla.suse.com/1089644"
},
{
"category": "self",
"summary": "SUSE Bug 1154353",
"url": "https://bugzilla.suse.com/1154353"
},
{
"category": "self",
"summary": "SUSE Bug 1157038",
"url": "https://bugzilla.suse.com/1157038"
},
{
"category": "self",
"summary": "SUSE Bug 1157923",
"url": "https://bugzilla.suse.com/1157923"
},
{
"category": "self",
"summary": "SUSE Bug 1176447",
"url": "https://bugzilla.suse.com/1176447"
},
{
"category": "self",
"summary": "SUSE Bug 1176940",
"url": "https://bugzilla.suse.com/1176940"
},
{
"category": "self",
"summary": "SUSE Bug 1178134",
"url": "https://bugzilla.suse.com/1178134"
},
{
"category": "self",
"summary": "SUSE Bug 1181147",
"url": "https://bugzilla.suse.com/1181147"
},
{
"category": "self",
"summary": "SUSE Bug 1181588",
"url": "https://bugzilla.suse.com/1181588"
},
{
"category": "self",
"summary": "SUSE Bug 1183872",
"url": "https://bugzilla.suse.com/1183872"
},
{
"category": "self",
"summary": "SUSE Bug 1187716",
"url": "https://bugzilla.suse.com/1187716"
},
{
"category": "self",
"summary": "SUSE Bug 1188404",
"url": "https://bugzilla.suse.com/1188404"
},
{
"category": "self",
"summary": "SUSE Bug 1189126",
"url": "https://bugzilla.suse.com/1189126"
},
{
"category": "self",
"summary": "SUSE Bug 1190812",
"url": "https://bugzilla.suse.com/1190812"
},
{
"category": "self",
"summary": "SUSE Bug 1190972",
"url": "https://bugzilla.suse.com/1190972"
},
{
"category": "self",
"summary": "SUSE Bug 1191580",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "self",
"summary": "SUSE Bug 1191655",
"url": "https://bugzilla.suse.com/1191655"
},
{
"category": "self",
"summary": "SUSE Bug 1191741",
"url": "https://bugzilla.suse.com/1191741"
},
{
"category": "self",
"summary": "SUSE Bug 1192210",
"url": "https://bugzilla.suse.com/1192210"
},
{
"category": "self",
"summary": "SUSE Bug 1192483",
"url": "https://bugzilla.suse.com/1192483"
},
{
"category": "self",
"summary": "SUSE Bug 1193096",
"url": "https://bugzilla.suse.com/1193096"
},
{
"category": "self",
"summary": "SUSE Bug 1193233",
"url": "https://bugzilla.suse.com/1193233"
},
{
"category": "self",
"summary": "SUSE Bug 1193243",
"url": "https://bugzilla.suse.com/1193243"
},
{
"category": "self",
"summary": "SUSE Bug 1193787",
"url": "https://bugzilla.suse.com/1193787"
},
{
"category": "self",
"summary": "SUSE Bug 1194163",
"url": "https://bugzilla.suse.com/1194163"
},
{
"category": "self",
"summary": "SUSE Bug 1194967",
"url": "https://bugzilla.suse.com/1194967"
},
{
"category": "self",
"summary": "SUSE Bug 1195012",
"url": "https://bugzilla.suse.com/1195012"
},
{
"category": "self",
"summary": "SUSE Bug 1195081",
"url": "https://bugzilla.suse.com/1195081"
},
{
"category": "self",
"summary": "SUSE Bug 1195286",
"url": "https://bugzilla.suse.com/1195286"
},
{
"category": "self",
"summary": "SUSE Bug 1195352",
"url": "https://bugzilla.suse.com/1195352"
},
{
"category": "self",
"summary": "SUSE Bug 1195378",
"url": "https://bugzilla.suse.com/1195378"
},
{
"category": "self",
"summary": "SUSE Bug 1195506",
"url": "https://bugzilla.suse.com/1195506"
},
{
"category": "self",
"summary": "SUSE Bug 1195516",
"url": "https://bugzilla.suse.com/1195516"
},
{
"category": "self",
"summary": "SUSE Bug 1195543",
"url": "https://bugzilla.suse.com/1195543"
},
{
"category": "self",
"summary": "SUSE Bug 1195668",
"url": "https://bugzilla.suse.com/1195668"
},
{
"category": "self",
"summary": "SUSE Bug 1195701",
"url": "https://bugzilla.suse.com/1195701"
},
{
"category": "self",
"summary": "SUSE Bug 1195798",
"url": "https://bugzilla.suse.com/1195798"
},
{
"category": "self",
"summary": "SUSE Bug 1195799",
"url": "https://bugzilla.suse.com/1195799"
},
{
"category": "self",
"summary": "SUSE Bug 1195823",
"url": "https://bugzilla.suse.com/1195823"
},
{
"category": "self",
"summary": "SUSE Bug 1195908",
"url": "https://bugzilla.suse.com/1195908"
},
{
"category": "self",
"summary": "SUSE Bug 1195928",
"url": "https://bugzilla.suse.com/1195928"
},
{
"category": "self",
"summary": "SUSE Bug 1195947",
"url": "https://bugzilla.suse.com/1195947"
},
{
"category": "self",
"summary": "SUSE Bug 1195957",
"url": "https://bugzilla.suse.com/1195957"
},
{
"category": "self",
"summary": "SUSE Bug 1195995",
"url": "https://bugzilla.suse.com/1195995"
},
{
"category": "self",
"summary": "SUSE Bug 1196195",
"url": "https://bugzilla.suse.com/1196195"
},
{
"category": "self",
"summary": "SUSE Bug 1196235",
"url": "https://bugzilla.suse.com/1196235"
},
{
"category": "self",
"summary": "SUSE Bug 1196339",
"url": "https://bugzilla.suse.com/1196339"
},
{
"category": "self",
"summary": "SUSE Bug 1196373",
"url": "https://bugzilla.suse.com/1196373"
},
{
"category": "self",
"summary": "SUSE Bug 1196400",
"url": "https://bugzilla.suse.com/1196400"
},
{
"category": "self",
"summary": "SUSE Bug 1196403",
"url": "https://bugzilla.suse.com/1196403"
},
{
"category": "self",
"summary": "SUSE Bug 1196516",
"url": "https://bugzilla.suse.com/1196516"
},
{
"category": "self",
"summary": "SUSE Bug 1196584",
"url": "https://bugzilla.suse.com/1196584"
},
{
"category": "self",
"summary": "SUSE Bug 1196585",
"url": "https://bugzilla.suse.com/1196585"
},
{
"category": "self",
"summary": "SUSE Bug 1196601",
"url": "https://bugzilla.suse.com/1196601"
},
{
"category": "self",
"summary": "SUSE Bug 1196612",
"url": "https://bugzilla.suse.com/1196612"
},
{
"category": "self",
"summary": "SUSE Bug 1196776",
"url": "https://bugzilla.suse.com/1196776"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0001 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0002 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0492 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0516 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0847 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-25375 page",
"url": "https://www.suse.com/security/cve/CVE-2022-25375/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2022-03-08T18:06:58Z",
"generator": {
"date": "2022-03-08T18:06:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2022:0760-1",
"initial_release_date": "2022-03-08T18:06:58Z",
"revision_history": [
{
"date": "2022-03-08T18:06:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product_id": "cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product_id": "cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product_id": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product_id": "dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product_id": "dlm-kmp-default-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product_id": "dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-al-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-al-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-al-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-allwinner-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-altera-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-altera-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-altera-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amd-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-amd-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-amd-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-amlogic-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apm-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-apm-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-apm-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-arm-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-arm-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-arm-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-broadcom-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-cavium-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-exynos-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-freescale-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-hisilicon-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-lg-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-lg-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-lg-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-marvell-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-mediatek-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-nvidia-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-qcom-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-renesas-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-rockchip-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-socionext-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-sprd-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-xilinx-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-zte-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "dtb-zte-5.3.18-150300.59.54.1.aarch64",
"product_id": "dtb-zte-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product_id": "gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product_id": "gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product_id": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-64kb-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-default-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-default-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"product": {
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"product_id": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"product": {
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"product_id": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-default-devel-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-default-extra-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-default-optional-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-obs-build-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-obs-qa-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-preempt-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kernel-syms-5.3.18-150300.59.54.1.aarch64",
"product_id": "kernel-syms-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product_id": "kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product_id": "kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product_id": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product_id": "ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product_id": "ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product_id": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"product_id": "reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"product_id": "reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product": {
"name": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"product_id": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-5.3.18-150300.59.54.1.noarch",
"product": {
"name": "kernel-devel-5.3.18-150300.59.54.1.noarch",
"product_id": "kernel-devel-5.3.18-150300.59.54.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-5.3.18-150300.59.54.1.noarch",
"product": {
"name": "kernel-docs-5.3.18-150300.59.54.1.noarch",
"product_id": "kernel-docs-5.3.18-150300.59.54.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"product": {
"name": "kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"product_id": "kernel-docs-html-5.3.18-150300.59.54.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-5.3.18-150300.59.54.1.noarch",
"product": {
"name": "kernel-macros-5.3.18-150300.59.54.1.noarch",
"product_id": "kernel-macros-5.3.18-150300.59.54.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-5.3.18-150300.59.54.1.noarch",
"product": {
"name": "kernel-source-5.3.18-150300.59.54.1.noarch",
"product_id": "kernel-source-5.3.18-150300.59.54.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"product": {
"name": "kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"product_id": "kernel-source-vanilla-5.3.18-150300.59.54.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product_id": "cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product_id": "dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product_id": "gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-debug-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-default-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-default-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"product": {
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"product_id": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"product": {
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"product_id": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-default-devel-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-default-extra-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-default-optional-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-obs-build-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kernel-syms-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product_id": "kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product_id": "ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product": {
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"product_id": "reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"product_id": "cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"product_id": "dlm-kmp-default-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"product_id": "gfs2-kmp-default-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-default-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-default-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"product": {
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"product_id": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"product": {
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"product_id": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-default-devel-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-default-extra-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-default-livepatch-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-default-optional-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-obs-build-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-obs-qa-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-syms-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-syms-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"product_id": "kernel-zfcpdump-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"product_id": "kselftests-kmp-default-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"product_id": "ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"product": {
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"product_id": "reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product_id": "cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product_id": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product_id": "dlm-kmp-default-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product_id": "dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product_id": "gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product_id": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-debug-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-debug-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-debug-devel-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-default-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-default-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"product": {
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"product_id": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"product": {
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"product_id": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-default-devel-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-default-extra-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-default-optional-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-obs-build-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-obs-qa-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-preempt-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kernel-syms-5.3.18-150300.59.54.1.x86_64",
"product_id": "kernel-syms-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product_id": "kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product_id": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product_id": "ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product_id": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"product_id": "reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product": {
"name": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"product_id": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-default-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-al-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-al-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-allwinner-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-altera-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-altera-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amd-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-amd-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-amlogic-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-apm-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-apm-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-arm-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-arm-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-broadcom-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-cavium-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-exynos-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-freescale-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-hisilicon-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-lg-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-lg-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-marvell-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-mediatek-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-nvidia-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-qcom-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-renesas-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-rockchip-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-socionext-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-sprd-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-xilinx-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dtb-zte-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "dtb-zte-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-debug-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-default-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-default-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-default-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-default-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64"
},
"product_reference": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le"
},
"product_reference": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x"
},
"product_reference": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64"
},
"product_reference": "kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64"
},
"product_reference": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le"
},
"product_reference": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x"
},
"product_reference": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64"
},
"product_reference": "kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-optional-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-5.3.18-150300.59.54.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch"
},
"product_reference": "kernel-devel-5.3.18-150300.59.54.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-5.3.18-150300.59.54.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch"
},
"product_reference": "kernel-docs-5.3.18-150300.59.54.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-docs-html-5.3.18-150300.59.54.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch"
},
"product_reference": "kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.3.18-150300.59.54.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch"
},
"product_reference": "kernel-macros-5.3.18-150300.59.54.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-build-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-obs-qa-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.3.18-150300.59.54.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch"
},
"product_reference": "kernel-source-5.3.18-150300.59.54.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-vanilla-5.3.18-150300.59.54.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch"
},
"product_reference": "kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kernel-syms-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-syms-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kernel-syms-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le"
},
"product_reference": "reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x"
},
"product_reference": "reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64"
},
"product_reference": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
},
"product_reference": "reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-0001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0001"
}
],
"notes": [
{
"category": "general",
"text": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0001",
"url": "https://www.suse.com/security/cve/CVE-2022-0001"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1196901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:06:58Z",
"details": "moderate"
}
],
"title": "CVE-2022-0001"
},
{
"cve": "CVE-2022-0002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0002"
}
],
"notes": [
{
"category": "general",
"text": "Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0002",
"url": "https://www.suse.com/security/cve/CVE-2022-0002"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2022-0002",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2022-0002",
"url": "https://bugzilla.suse.com/1196901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:06:58Z",
"details": "moderate"
}
],
"title": "CVE-2022-0002"
},
{
"cve": "CVE-2022-0492",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0492"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in the Linux kernel\u0027s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0492",
"url": "https://www.suse.com/security/cve/CVE-2022-0492"
},
{
"category": "external",
"summary": "SUSE Bug 1195543 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1195543"
},
{
"category": "external",
"summary": "SUSE Bug 1195908 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1195908"
},
{
"category": "external",
"summary": "SUSE Bug 1196612 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1196612"
},
{
"category": "external",
"summary": "SUSE Bug 1196776 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1196776"
},
{
"category": "external",
"summary": "SUSE Bug 1198615 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1198615"
},
{
"category": "external",
"summary": "SUSE Bug 1199255 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1199255"
},
{
"category": "external",
"summary": "SUSE Bug 1199615 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1199615"
},
{
"category": "external",
"summary": "SUSE Bug 1200084 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1200084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:06:58Z",
"details": "moderate"
}
],
"title": "CVE-2022-0492"
},
{
"cve": "CVE-2022-0516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0516"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel. This flaw allows a local attacker with a normal user privilege to obtain unauthorized memory write access. This flaw affects Linux kernel versions prior to 5.17-rc4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0516",
"url": "https://www.suse.com/security/cve/CVE-2022-0516"
},
{
"category": "external",
"summary": "SUSE Bug 1195516 for CVE-2022-0516",
"url": "https://bugzilla.suse.com/1195516"
},
{
"category": "external",
"summary": "SUSE Bug 1195947 for CVE-2022-0516",
"url": "https://bugzilla.suse.com/1195947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:06:58Z",
"details": "important"
}
],
"title": "CVE-2022-0516"
},
{
"cve": "CVE-2022-0847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0847"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the way the \"flags\" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0847",
"url": "https://www.suse.com/security/cve/CVE-2022-0847"
},
{
"category": "external",
"summary": "SUSE Bug 1196584 for CVE-2022-0847",
"url": "https://bugzilla.suse.com/1196584"
},
{
"category": "external",
"summary": "SUSE Bug 1196601 for CVE-2022-0847",
"url": "https://bugzilla.suse.com/1196601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:06:58Z",
"details": "important"
}
],
"title": "CVE-2022-0847"
},
{
"cve": "CVE-2022-25375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-25375"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-25375",
"url": "https://www.suse.com/security/cve/CVE-2022-25375"
},
{
"category": "external",
"summary": "SUSE Bug 1196235 for CVE-2022-25375",
"url": "https://bugzilla.suse.com/1196235"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:cluster-md-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:cluster-md-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:cluster-md-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:dlm-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dlm-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:dtb-al-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-allwinner-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-altera-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-amlogic-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-apm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-arm-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-broadcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-cavium-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-exynos-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-freescale-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-hisilicon-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-lg-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-marvell-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-mediatek-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-nvidia-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-qcom-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-renesas-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-rockchip-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-socionext-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-sprd-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-xilinx-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:dtb-zte-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:gfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:gfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-64kb-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.aarch64",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.ppc64le",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.s390x",
"openSUSE Leap 15.3:kernel-default-base-rebuild-5.3.18-150300.59.54.1.150300.18.35.3.x86_64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-default-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-devel-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-docs-html-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-macros-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-build-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-obs-qa-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-extra-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-livepatch-devel-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-preempt-optional-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-source-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-source-vanilla-5.3.18-150300.59.54.1.noarch",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kernel-syms-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:kselftests-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:kselftests-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:ocfs2-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:ocfs2-kmp-preempt-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-64kb-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.ppc64le",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.s390x",
"openSUSE Leap 15.3:reiserfs-kmp-default-5.3.18-150300.59.54.1.x86_64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.aarch64",
"openSUSE Leap 15.3:reiserfs-kmp-preempt-5.3.18-150300.59.54.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-08T18:06:58Z",
"details": "moderate"
}
],
"title": "CVE-2022-25375"
}
]
}
OPENSUSE-SU-2022:0768-1
Vulnerability from csaf_opensuse - Published: 2022-03-09 09:09 - Updated: 2022-03-09 09:09Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch: The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes.
Transient execution side-channel attacks attacking the Branch History Buffer (BHB),
named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated.
The following security bugs were fixed:
- CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580).
- CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580).
- CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584).
- CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079)
- CVE-2022-0644: Fixed a denial of service by a local user. A assertion failure could be triggered in kernel_read_file_from_fd() (bsc#1196155).
- CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were not considered, which lead to a move_data_page NULL pointer dereference (bsc#1195987).
- CVE-2022-24959: Fixed a memory leak in yam_siocdevprivate() in drivers/net/hamradio/yam.c (bsc#1195897).
- CVE-2022-0487: A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove() in drivers/memstick/host/rtsx_usb_ms.c (bsc#1194516).
- CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543).
- CVE-2022-24448: Fixed an issue in fs/nfs/dir.c. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should have occured, but the server instead returned uninitialized data in the file descriptor (bsc#1195612).
The following non-security bugs were fixed:
- crypto: af_alg - get_page upon reassignment to TX SGL (bsc#1195840).
- lib/iov_iter: initialize 'flags' in new pipe_buffer (bsc#1196584).
Patchnames: openSUSE-SLE-15.3-2022-768,openSUSE-SLE-15.4-2022-768
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x | — |
Vendor Fix
|
Threats
Impact
moderate
References
61 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1185973 | self |
| https://bugzilla.suse.com/1191580 | self |
| https://bugzilla.suse.com/1194516 | self |
| https://bugzilla.suse.com/1195536 | self |
| https://bugzilla.suse.com/1195543 | self |
| https://bugzilla.suse.com/1195612 | self |
| https://bugzilla.suse.com/1195840 | self |
| https://bugzilla.suse.com/1195897 | self |
| https://bugzilla.suse.com/1195908 | self |
| https://bugzilla.suse.com/1195949 | self |
| https://bugzilla.suse.com/1195987 | self |
| https://bugzilla.suse.com/1196079 | self |
| https://bugzilla.suse.com/1196155 | self |
| https://bugzilla.suse.com/1196584 | self |
| https://bugzilla.suse.com/1196612 | self |
| https://www.suse.com/security/cve/CVE-2021-44879/ | self |
| https://www.suse.com/security/cve/CVE-2022-0001/ | self |
| https://www.suse.com/security/cve/CVE-2022-0002/ | self |
| https://www.suse.com/security/cve/CVE-2022-0487/ | self |
| https://www.suse.com/security/cve/CVE-2022-0492/ | self |
| https://www.suse.com/security/cve/CVE-2022-0617/ | self |
| https://www.suse.com/security/cve/CVE-2022-0644/ | self |
| https://www.suse.com/security/cve/CVE-2022-0847/ | self |
| https://www.suse.com/security/cve/CVE-2022-24448/ | self |
| https://www.suse.com/security/cve/CVE-2022-24959/ | self |
| https://www.suse.com/security/cve/CVE-2021-44879 | external |
| https://bugzilla.suse.com/1195987 | external |
| https://www.suse.com/security/cve/CVE-2022-0001 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
| https://www.suse.com/security/cve/CVE-2022-0002 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
| https://www.suse.com/security/cve/CVE-2022-0487 | external |
| https://bugzilla.suse.com/1194516 | external |
| https://bugzilla.suse.com/1195949 | external |
| https://bugzilla.suse.com/1198615 | external |
| https://www.suse.com/security/cve/CVE-2022-0492 | external |
| https://bugzilla.suse.com/1195543 | external |
| https://bugzilla.suse.com/1195908 | external |
| https://bugzilla.suse.com/1196612 | external |
| https://bugzilla.suse.com/1196776 | external |
| https://bugzilla.suse.com/1198615 | external |
| https://bugzilla.suse.com/1199255 | external |
| https://bugzilla.suse.com/1199615 | external |
| https://bugzilla.suse.com/1200084 | external |
| https://www.suse.com/security/cve/CVE-2022-0617 | external |
| https://bugzilla.suse.com/1196079 | external |
| https://www.suse.com/security/cve/CVE-2022-0644 | external |
| https://bugzilla.suse.com/1196155 | external |
| https://www.suse.com/security/cve/CVE-2022-0847 | external |
| https://bugzilla.suse.com/1196584 | external |
| https://bugzilla.suse.com/1196601 | external |
| https://www.suse.com/security/cve/CVE-2022-24448 | external |
| https://bugzilla.suse.com/1195612 | external |
| https://www.suse.com/security/cve/CVE-2022-24959 | external |
| https://bugzilla.suse.com/1195897 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes.\n\n\nTransient execution side-channel attacks attacking the Branch History Buffer (BHB),\nnamed \u0027Branch Target Injection\u0027 and \u0027Intra-Mode Branch History Injection\u0027 are now mitigated.\n\nThe following security bugs were fixed:\n\n- CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580).\n- CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580).\n- CVE-2022-0847: Fixed a vulnerability were a local attackers could overwrite data in arbitrary (read-only) files (bsc#1196584).\n- CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079)\n- CVE-2022-0644: Fixed a denial of service by a local user. A assertion failure could be triggered in kernel_read_file_from_fd() (bsc#1196155).\n- CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were not considered, which lead to a move_data_page NULL pointer dereference (bsc#1195987).\n- CVE-2022-24959: Fixed a memory leak in yam_siocdevprivate() in drivers/net/hamradio/yam.c (bsc#1195897).\n- CVE-2022-0487: A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove() in drivers/memstick/host/rtsx_usb_ms.c (bsc#1194516).\n- CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543).\n- CVE-2022-24448: Fixed an issue in fs/nfs/dir.c. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should have occured, but the server instead returned uninitialized data in the file descriptor (bsc#1195612).\n\n\nThe following non-security bugs were fixed:\n\n- crypto: af_alg - get_page upon reassignment to TX SGL (bsc#1195840).\n- lib/iov_iter: initialize \u0027flags\u0027 in new pipe_buffer (bsc#1196584).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2022-768,openSUSE-SLE-15.4-2022-768",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_0768-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2022:0768-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/MWGLT5YBYSSX5MP2JBKT3N3QV2IWMC5F/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2022:0768-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/MWGLT5YBYSSX5MP2JBKT3N3QV2IWMC5F/"
},
{
"category": "self",
"summary": "SUSE Bug 1185973",
"url": "https://bugzilla.suse.com/1185973"
},
{
"category": "self",
"summary": "SUSE Bug 1191580",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "self",
"summary": "SUSE Bug 1194516",
"url": "https://bugzilla.suse.com/1194516"
},
{
"category": "self",
"summary": "SUSE Bug 1195536",
"url": "https://bugzilla.suse.com/1195536"
},
{
"category": "self",
"summary": "SUSE Bug 1195543",
"url": "https://bugzilla.suse.com/1195543"
},
{
"category": "self",
"summary": "SUSE Bug 1195612",
"url": "https://bugzilla.suse.com/1195612"
},
{
"category": "self",
"summary": "SUSE Bug 1195840",
"url": "https://bugzilla.suse.com/1195840"
},
{
"category": "self",
"summary": "SUSE Bug 1195897",
"url": "https://bugzilla.suse.com/1195897"
},
{
"category": "self",
"summary": "SUSE Bug 1195908",
"url": "https://bugzilla.suse.com/1195908"
},
{
"category": "self",
"summary": "SUSE Bug 1195949",
"url": "https://bugzilla.suse.com/1195949"
},
{
"category": "self",
"summary": "SUSE Bug 1195987",
"url": "https://bugzilla.suse.com/1195987"
},
{
"category": "self",
"summary": "SUSE Bug 1196079",
"url": "https://bugzilla.suse.com/1196079"
},
{
"category": "self",
"summary": "SUSE Bug 1196155",
"url": "https://bugzilla.suse.com/1196155"
},
{
"category": "self",
"summary": "SUSE Bug 1196584",
"url": "https://bugzilla.suse.com/1196584"
},
{
"category": "self",
"summary": "SUSE Bug 1196612",
"url": "https://bugzilla.suse.com/1196612"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-44879 page",
"url": "https://www.suse.com/security/cve/CVE-2021-44879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0001 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0002 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0487 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0487/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0492 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0617 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0617/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0644 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0847 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-24448 page",
"url": "https://www.suse.com/security/cve/CVE-2022-24448/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-24959 page",
"url": "https://www.suse.com/security/cve/CVE-2022-24959/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2022-03-09T09:09:29Z",
"generator": {
"date": "2022-03-09T09:09:29Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2022:0768-1",
"initial_release_date": "2022-03-09T09:09:29Z",
"revision_history": [
{
"date": "2022-03-09T09:09:29Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-197.108.1.aarch64",
"product": {
"name": "kernel-vanilla-4.12.14-197.108.1.aarch64",
"product_id": "kernel-vanilla-4.12.14-197.108.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"product": {
"name": "kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"product_id": "kernel-vanilla-base-4.12.14-197.108.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"product_id": "kernel-vanilla-devel-4.12.14-197.108.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"product": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"product_id": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-base-4.12.14-197.108.1.ppc64le",
"product": {
"name": "kernel-debug-base-4.12.14-197.108.1.ppc64le",
"product_id": "kernel-debug-base-4.12.14-197.108.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-197.108.1.ppc64le",
"product": {
"name": "kernel-vanilla-4.12.14-197.108.1.ppc64le",
"product_id": "kernel-vanilla-4.12.14-197.108.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"product": {
"name": "kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"product_id": "kernel-vanilla-base-4.12.14-197.108.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"product": {
"name": "kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"product_id": "kernel-vanilla-devel-4.12.14-197.108.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"product": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"product_id": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-man-4.12.14-197.108.1.s390x",
"product": {
"name": "kernel-default-man-4.12.14-197.108.1.s390x",
"product_id": "kernel-default-man-4.12.14-197.108.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-197.108.1.s390x",
"product": {
"name": "kernel-vanilla-4.12.14-197.108.1.s390x",
"product_id": "kernel-vanilla-4.12.14-197.108.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-197.108.1.s390x",
"product": {
"name": "kernel-vanilla-base-4.12.14-197.108.1.s390x",
"product_id": "kernel-vanilla-base-4.12.14-197.108.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"product": {
"name": "kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"product_id": "kernel-vanilla-devel-4.12.14-197.108.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"product": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"product_id": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-man-4.12.14-197.108.1.s390x",
"product": {
"name": "kernel-zfcpdump-man-4.12.14-197.108.1.s390x",
"product_id": "kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-debug-base-4.12.14-197.108.1.x86_64",
"product": {
"name": "kernel-debug-base-4.12.14-197.108.1.x86_64",
"product_id": "kernel-debug-base-4.12.14-197.108.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"product": {
"name": "kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"product_id": "kernel-kvmsmall-base-4.12.14-197.108.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-197.108.1.x86_64",
"product": {
"name": "kernel-vanilla-4.12.14-197.108.1.x86_64",
"product_id": "kernel-vanilla-4.12.14-197.108.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"product": {
"name": "kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"product_id": "kernel-vanilla-base-4.12.14-197.108.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"product_id": "kernel-vanilla-devel-4.12.14-197.108.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"product": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"product_id": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-base-4.12.14-197.108.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le"
},
"product_reference": "kernel-debug-base-4.12.14-197.108.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-base-4.12.14-197.108.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64"
},
"product_reference": "kernel-debug-base-4.12.14-197.108.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-man-4.12.14-197.108.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x"
},
"product_reference": "kernel-default-man-4.12.14-197.108.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-kvmsmall-base-4.12.14-197.108.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64"
},
"product_reference": "kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-197.108.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64"
},
"product_reference": "kernel-vanilla-4.12.14-197.108.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-197.108.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le"
},
"product_reference": "kernel-vanilla-4.12.14-197.108.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-197.108.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x"
},
"product_reference": "kernel-vanilla-4.12.14-197.108.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-4.12.14-197.108.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64"
},
"product_reference": "kernel-vanilla-4.12.14-197.108.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-197.108.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64"
},
"product_reference": "kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-197.108.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le"
},
"product_reference": "kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-197.108.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x"
},
"product_reference": "kernel-vanilla-base-4.12.14-197.108.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-base-4.12.14-197.108.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64"
},
"product_reference": "kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-197.108.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64"
},
"product_reference": "kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-197.108.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le"
},
"product_reference": "kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-197.108.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x"
},
"product_reference": "kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-devel-4.12.14-197.108.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64"
},
"product_reference": "kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64"
},
"product_reference": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le"
},
"product_reference": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x"
},
"product_reference": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64"
},
"product_reference": "kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-man-4.12.14-197.108.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
},
"product_reference": "kernel-zfcpdump-man-4.12.14-197.108.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-44879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-44879"
}
],
"notes": [
{
"category": "general",
"text": "In gc_data_segment in fs/f2fs/gc.c in the Linux kernel before 5.16.3, special files are not considered, leading to a move_data_page NULL pointer dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-44879",
"url": "https://www.suse.com/security/cve/CVE-2021-44879"
},
{
"category": "external",
"summary": "SUSE Bug 1195987 for CVE-2021-44879",
"url": "https://bugzilla.suse.com/1195987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "moderate"
}
],
"title": "CVE-2021-44879"
},
{
"cve": "CVE-2022-0001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0001"
}
],
"notes": [
{
"category": "general",
"text": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0001",
"url": "https://www.suse.com/security/cve/CVE-2022-0001"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1196901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "moderate"
}
],
"title": "CVE-2022-0001"
},
{
"cve": "CVE-2022-0002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0002"
}
],
"notes": [
{
"category": "general",
"text": "Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0002",
"url": "https://www.suse.com/security/cve/CVE-2022-0002"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2022-0002",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2022-0002",
"url": "https://bugzilla.suse.com/1196901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "moderate"
}
],
"title": "CVE-2022-0002"
},
{
"cve": "CVE-2022-0487",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0487"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove in drivers/memstick/host/rtsx_usb_ms.c in memstick in the Linux kernel. In this flaw, a local attacker with a user privilege may impact system Confidentiality. This flaw affects kernel versions prior to 5.14 rc1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0487",
"url": "https://www.suse.com/security/cve/CVE-2022-0487"
},
{
"category": "external",
"summary": "SUSE Bug 1194516 for CVE-2022-0487",
"url": "https://bugzilla.suse.com/1194516"
},
{
"category": "external",
"summary": "SUSE Bug 1195949 for CVE-2022-0487",
"url": "https://bugzilla.suse.com/1195949"
},
{
"category": "external",
"summary": "SUSE Bug 1198615 for CVE-2022-0487",
"url": "https://bugzilla.suse.com/1198615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "moderate"
}
],
"title": "CVE-2022-0487"
},
{
"cve": "CVE-2022-0492",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0492"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in the Linux kernel\u0027s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0492",
"url": "https://www.suse.com/security/cve/CVE-2022-0492"
},
{
"category": "external",
"summary": "SUSE Bug 1195543 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1195543"
},
{
"category": "external",
"summary": "SUSE Bug 1195908 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1195908"
},
{
"category": "external",
"summary": "SUSE Bug 1196612 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1196612"
},
{
"category": "external",
"summary": "SUSE Bug 1196776 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1196776"
},
{
"category": "external",
"summary": "SUSE Bug 1198615 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1198615"
},
{
"category": "external",
"summary": "SUSE Bug 1199255 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1199255"
},
{
"category": "external",
"summary": "SUSE Bug 1199615 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1199615"
},
{
"category": "external",
"summary": "SUSE Bug 1200084 for CVE-2022-0492",
"url": "https://bugzilla.suse.com/1200084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "moderate"
}
],
"title": "CVE-2022-0492"
},
{
"cve": "CVE-2022-0617",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0617"
}
],
"notes": [
{
"category": "general",
"text": "A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image. A local user could use this flaw to crash the system. Actual from Linux kernel 4.2-rc1 till 5.17-rc2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0617",
"url": "https://www.suse.com/security/cve/CVE-2022-0617"
},
{
"category": "external",
"summary": "SUSE Bug 1196079 for CVE-2022-0617",
"url": "https://bugzilla.suse.com/1196079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "moderate"
}
],
"title": "CVE-2022-0617"
},
{
"cve": "CVE-2022-0644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0644"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0644",
"url": "https://www.suse.com/security/cve/CVE-2022-0644"
},
{
"category": "external",
"summary": "SUSE Bug 1196155 for CVE-2022-0644",
"url": "https://bugzilla.suse.com/1196155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "moderate"
}
],
"title": "CVE-2022-0644"
},
{
"cve": "CVE-2022-0847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0847"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the way the \"flags\" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0847",
"url": "https://www.suse.com/security/cve/CVE-2022-0847"
},
{
"category": "external",
"summary": "SUSE Bug 1196584 for CVE-2022-0847",
"url": "https://bugzilla.suse.com/1196584"
},
{
"category": "external",
"summary": "SUSE Bug 1196601 for CVE-2022-0847",
"url": "https://bugzilla.suse.com/1196601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "important"
}
],
"title": "CVE-2022-0847"
},
{
"cve": "CVE-2022-24448",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-24448"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should occur, but the server instead returns uninitialized data in the file descriptor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-24448",
"url": "https://www.suse.com/security/cve/CVE-2022-24448"
},
{
"category": "external",
"summary": "SUSE Bug 1195612 for CVE-2022-24448",
"url": "https://bugzilla.suse.com/1195612"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "moderate"
}
],
"title": "CVE-2022-24448"
},
{
"cve": "CVE-2022-24959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-24959"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 5.16.5. There is a memory leak in yam_siocdevprivate in drivers/net/hamradio/yam.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-24959",
"url": "https://www.suse.com/security/cve/CVE-2022-24959"
},
{
"category": "external",
"summary": "SUSE Bug 1195897 for CVE-2022-24959",
"url": "https://bugzilla.suse.com/1195897"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-debug-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-default-man-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-kvmsmall-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-base-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.aarch64",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.ppc64le",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.s390x",
"openSUSE Leap 15.3:kernel-vanilla-livepatch-devel-4.12.14-197.108.1.x86_64",
"openSUSE Leap 15.3:kernel-zfcpdump-man-4.12.14-197.108.1.s390x"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-09T09:09:29Z",
"details": "moderate"
}
],
"title": "CVE-2022-24959"
}
]
}
OPENSUSE-SU-2022:0940-1
Vulnerability from csaf_opensuse - Published: 2022-03-23 09:41 - Updated: 2022-03-23 09:41Summary
Security update for xen
Severity
Important
Notes
Title of the patch: Security update for xen
Description of the patch: This update for xen fixes the following issues:
Update Xen to version 4.14.4 (bsc#1027519)
Transient execution side-channel attacks attacking the Branch History Buffer (BHB),
named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated.
Security issues fixed:
- CVE-2022-0001, CVE-2022-0002, CVE-2021-26401: BHB speculation issues (bsc#1196915).
Non-security issues fixed:
- Fixed issue around xl and virsh operation - virsh list not giving any output (bsc#1191668).
Patchnames: openSUSE-SLE-15.3-2022-940
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.6 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
References
21 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1027519 | self |
| https://bugzilla.suse.com/1191668 | self |
| https://bugzilla.suse.com/1194267 | self |
| https://bugzilla.suse.com/1196915 | self |
| https://www.suse.com/security/cve/CVE-2021-26401/ | self |
| https://www.suse.com/security/cve/CVE-2022-0001/ | self |
| https://www.suse.com/security/cve/CVE-2022-0002/ | self |
| https://www.suse.com/security/cve/CVE-2021-26401 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
| https://bugzilla.suse.com/1209630 | external |
| https://www.suse.com/security/cve/CVE-2022-0001 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
| https://www.suse.com/security/cve/CVE-2022-0002 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for xen",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for xen fixes the following issues:\n\nUpdate Xen to version 4.14.4 (bsc#1027519)\n\nTransient execution side-channel attacks attacking the Branch History Buffer (BHB),\nnamed \u0027Branch Target Injection\u0027 and \u0027Intra-Mode Branch History Injection\u0027 are now mitigated.\n\nSecurity issues fixed:\n\n- CVE-2022-0001, CVE-2022-0002, CVE-2021-26401: BHB speculation issues (bsc#1196915).\n\nNon-security issues fixed:\n\n- Fixed issue around xl and virsh operation - virsh list not giving any output (bsc#1191668).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2022-940",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_0940-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2022:0940-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NXODJTCX5G5LLTBOEFVBOCIWYKEGYAMP/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2022:0940-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NXODJTCX5G5LLTBOEFVBOCIWYKEGYAMP/"
},
{
"category": "self",
"summary": "SUSE Bug 1027519",
"url": "https://bugzilla.suse.com/1027519"
},
{
"category": "self",
"summary": "SUSE Bug 1191668",
"url": "https://bugzilla.suse.com/1191668"
},
{
"category": "self",
"summary": "SUSE Bug 1194267",
"url": "https://bugzilla.suse.com/1194267"
},
{
"category": "self",
"summary": "SUSE Bug 1196915",
"url": "https://bugzilla.suse.com/1196915"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-26401 page",
"url": "https://www.suse.com/security/cve/CVE-2021-26401/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0001 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0001/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0002 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0002/"
}
],
"title": "Security update for xen",
"tracking": {
"current_release_date": "2022-03-23T09:41:22Z",
"generator": {
"date": "2022-03-23T09:41:22Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2022:0940-1",
"initial_release_date": "2022-03-23T09:41:22Z",
"revision_history": [
{
"date": "2022-03-23T09:41:22Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.14.4_02-150300.3.21.1.aarch64",
"product": {
"name": "xen-4.14.4_02-150300.3.21.1.aarch64",
"product_id": "xen-4.14.4_02-150300.3.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"product": {
"name": "xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"product_id": "xen-devel-4.14.4_02-150300.3.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"product": {
"name": "xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"product_id": "xen-doc-html-4.14.4_02-150300.3.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"product": {
"name": "xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"product_id": "xen-libs-4.14.4_02-150300.3.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"product": {
"name": "xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"product_id": "xen-tools-4.14.4_02-150300.3.21.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"product": {
"name": "xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"product_id": "xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch",
"product_id": "xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.14.4_02-150300.3.21.1.x86_64",
"product": {
"name": "xen-4.14.4_02-150300.3.21.1.x86_64",
"product_id": "xen-4.14.4_02-150300.3.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"product": {
"name": "xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"product_id": "xen-devel-4.14.4_02-150300.3.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"product": {
"name": "xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"product_id": "xen-doc-html-4.14.4_02-150300.3.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"product": {
"name": "xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"product_id": "xen-libs-4.14.4_02-150300.3.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"product_id": "xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"product": {
"name": "xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"product_id": "xen-tools-4.14.4_02-150300.3.21.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"product": {
"name": "xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"product_id": "xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.14.4_02-150300.3.21.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64"
},
"product_reference": "xen-4.14.4_02-150300.3.21.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.14.4_02-150300.3.21.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64"
},
"product_reference": "xen-4.14.4_02-150300.3.21.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.14.4_02-150300.3.21.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64"
},
"product_reference": "xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.14.4_02-150300.3.21.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64"
},
"product_reference": "xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.14.4_02-150300.3.21.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64"
},
"product_reference": "xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.14.4_02-150300.3.21.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64"
},
"product_reference": "xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.14.4_02-150300.3.21.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64"
},
"product_reference": "xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.14.4_02-150300.3.21.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64"
},
"product_reference": "xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.14.4_02-150300.3.21.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64"
},
"product_reference": "xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.14.4_02-150300.3.21.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64"
},
"product_reference": "xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64"
},
"product_reference": "xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64"
},
"product_reference": "xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-26401",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-26401"
}
],
"notes": [
{
"category": "general",
"text": "LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-26401",
"url": "https://www.suse.com/security/cve/CVE-2021-26401"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2021-26401",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2021-26401",
"url": "https://bugzilla.suse.com/1196901"
},
{
"category": "external",
"summary": "SUSE Bug 1209630 for CVE-2021-26401",
"url": "https://bugzilla.suse.com/1209630"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-23T09:41:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-26401"
},
{
"cve": "CVE-2022-0001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0001"
}
],
"notes": [
{
"category": "general",
"text": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0001",
"url": "https://www.suse.com/security/cve/CVE-2022-0001"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1196901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-23T09:41:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-0001"
},
{
"cve": "CVE-2022-0002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0002"
}
],
"notes": [
{
"category": "general",
"text": "Non-transparent sharing of branch predictor within a context in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0002",
"url": "https://www.suse.com/security/cve/CVE-2022-0002"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2022-0002",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2022-0002",
"url": "https://bugzilla.suse.com/1196901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-devel-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-doc-html-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-32bit-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-libs-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.aarch64",
"openSUSE Leap 15.3:xen-tools-domU-4.14.4_02-150300.3.21.1.x86_64",
"openSUSE Leap 15.3:xen-tools-xendomains-wait-disk-4.14.4_02-150300.3.21.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-03-23T09:41:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-0002"
}
]
}
OPENSUSE-SU-2024:11930-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
xen-4.16.0_06-3.1 on GA media
Severity
Moderate
Notes
Title of the patch: xen-4.16.0_06-3.1 on GA media
Description of the patch: These are all security issues fixed in the xen-4.16.0_06-3.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-11930
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.6 (Medium)
Affected products
Recommended
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:xen-4.16.0_06-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.16.0_06-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.16.0_06-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.16.0_06-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
6 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://www.suse.com/security/cve/CVE-2022-0001/ | self |
| https://www.suse.com/security/cve/CVE-2022-0001 | external |
| https://bugzilla.suse.com/1191580 | external |
| https://bugzilla.suse.com/1196901 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "xen-4.16.0_06-3.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the xen-4.16.0_06-3.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11930",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11930-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0001 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0001/"
}
],
"title": "xen-4.16.0_06-3.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11930-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.16.0_06-3.1.aarch64",
"product": {
"name": "xen-4.16.0_06-3.1.aarch64",
"product_id": "xen-4.16.0_06-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.16.0_06-3.1.aarch64",
"product": {
"name": "xen-devel-4.16.0_06-3.1.aarch64",
"product_id": "xen-devel-4.16.0_06-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.16.0_06-3.1.aarch64",
"product": {
"name": "xen-doc-html-4.16.0_06-3.1.aarch64",
"product_id": "xen-doc-html-4.16.0_06-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.16.0_06-3.1.aarch64",
"product": {
"name": "xen-libs-4.16.0_06-3.1.aarch64",
"product_id": "xen-libs-4.16.0_06-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.16.0_06-3.1.aarch64",
"product": {
"name": "xen-libs-32bit-4.16.0_06-3.1.aarch64",
"product_id": "xen-libs-32bit-4.16.0_06-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.16.0_06-3.1.aarch64",
"product": {
"name": "xen-tools-4.16.0_06-3.1.aarch64",
"product_id": "xen-tools-4.16.0_06-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.16.0_06-3.1.aarch64",
"product": {
"name": "xen-tools-domU-4.16.0_06-3.1.aarch64",
"product_id": "xen-tools-domU-4.16.0_06-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64",
"product_id": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.16.0_06-3.1.ppc64le",
"product": {
"name": "xen-4.16.0_06-3.1.ppc64le",
"product_id": "xen-4.16.0_06-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-devel-4.16.0_06-3.1.ppc64le",
"product": {
"name": "xen-devel-4.16.0_06-3.1.ppc64le",
"product_id": "xen-devel-4.16.0_06-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.16.0_06-3.1.ppc64le",
"product": {
"name": "xen-doc-html-4.16.0_06-3.1.ppc64le",
"product_id": "xen-doc-html-4.16.0_06-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-libs-4.16.0_06-3.1.ppc64le",
"product": {
"name": "xen-libs-4.16.0_06-3.1.ppc64le",
"product_id": "xen-libs-4.16.0_06-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.16.0_06-3.1.ppc64le",
"product": {
"name": "xen-libs-32bit-4.16.0_06-3.1.ppc64le",
"product_id": "xen-libs-32bit-4.16.0_06-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-4.16.0_06-3.1.ppc64le",
"product": {
"name": "xen-tools-4.16.0_06-3.1.ppc64le",
"product_id": "xen-tools-4.16.0_06-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.16.0_06-3.1.ppc64le",
"product": {
"name": "xen-tools-domU-4.16.0_06-3.1.ppc64le",
"product_id": "xen-tools-domU-4.16.0_06-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le",
"product_id": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.16.0_06-3.1.s390x",
"product": {
"name": "xen-4.16.0_06-3.1.s390x",
"product_id": "xen-4.16.0_06-3.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-devel-4.16.0_06-3.1.s390x",
"product": {
"name": "xen-devel-4.16.0_06-3.1.s390x",
"product_id": "xen-devel-4.16.0_06-3.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.16.0_06-3.1.s390x",
"product": {
"name": "xen-doc-html-4.16.0_06-3.1.s390x",
"product_id": "xen-doc-html-4.16.0_06-3.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-libs-4.16.0_06-3.1.s390x",
"product": {
"name": "xen-libs-4.16.0_06-3.1.s390x",
"product_id": "xen-libs-4.16.0_06-3.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.16.0_06-3.1.s390x",
"product": {
"name": "xen-libs-32bit-4.16.0_06-3.1.s390x",
"product_id": "xen-libs-32bit-4.16.0_06-3.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-4.16.0_06-3.1.s390x",
"product": {
"name": "xen-tools-4.16.0_06-3.1.s390x",
"product_id": "xen-tools-4.16.0_06-3.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.16.0_06-3.1.s390x",
"product": {
"name": "xen-tools-domU-4.16.0_06-3.1.s390x",
"product_id": "xen-tools-domU-4.16.0_06-3.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x",
"product_id": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.16.0_06-3.1.x86_64",
"product": {
"name": "xen-4.16.0_06-3.1.x86_64",
"product_id": "xen-4.16.0_06-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.16.0_06-3.1.x86_64",
"product": {
"name": "xen-devel-4.16.0_06-3.1.x86_64",
"product_id": "xen-devel-4.16.0_06-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.16.0_06-3.1.x86_64",
"product": {
"name": "xen-doc-html-4.16.0_06-3.1.x86_64",
"product_id": "xen-doc-html-4.16.0_06-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.16.0_06-3.1.x86_64",
"product": {
"name": "xen-libs-4.16.0_06-3.1.x86_64",
"product_id": "xen-libs-4.16.0_06-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-32bit-4.16.0_06-3.1.x86_64",
"product": {
"name": "xen-libs-32bit-4.16.0_06-3.1.x86_64",
"product_id": "xen-libs-32bit-4.16.0_06-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.16.0_06-3.1.x86_64",
"product": {
"name": "xen-tools-4.16.0_06-3.1.x86_64",
"product_id": "xen-tools-4.16.0_06-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.16.0_06-3.1.x86_64",
"product": {
"name": "xen-tools-domU-4.16.0_06-3.1.x86_64",
"product_id": "xen-tools-domU-4.16.0_06-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64",
"product_id": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.16.0_06-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.16.0_06-3.1.aarch64"
},
"product_reference": "xen-4.16.0_06-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.16.0_06-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.16.0_06-3.1.ppc64le"
},
"product_reference": "xen-4.16.0_06-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.16.0_06-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.16.0_06-3.1.s390x"
},
"product_reference": "xen-4.16.0_06-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.16.0_06-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.16.0_06-3.1.x86_64"
},
"product_reference": "xen-4.16.0_06-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.16.0_06-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.aarch64"
},
"product_reference": "xen-devel-4.16.0_06-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.16.0_06-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.ppc64le"
},
"product_reference": "xen-devel-4.16.0_06-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.16.0_06-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.s390x"
},
"product_reference": "xen-devel-4.16.0_06-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.16.0_06-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.x86_64"
},
"product_reference": "xen-devel-4.16.0_06-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.16.0_06-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.aarch64"
},
"product_reference": "xen-doc-html-4.16.0_06-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.16.0_06-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.ppc64le"
},
"product_reference": "xen-doc-html-4.16.0_06-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.16.0_06-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.s390x"
},
"product_reference": "xen-doc-html-4.16.0_06-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.16.0_06-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.x86_64"
},
"product_reference": "xen-doc-html-4.16.0_06-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.16.0_06-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.aarch64"
},
"product_reference": "xen-libs-4.16.0_06-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.16.0_06-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.ppc64le"
},
"product_reference": "xen-libs-4.16.0_06-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.16.0_06-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.s390x"
},
"product_reference": "xen-libs-4.16.0_06-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.16.0_06-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.x86_64"
},
"product_reference": "xen-libs-4.16.0_06-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.16.0_06-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.aarch64"
},
"product_reference": "xen-libs-32bit-4.16.0_06-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.16.0_06-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.ppc64le"
},
"product_reference": "xen-libs-32bit-4.16.0_06-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.16.0_06-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.s390x"
},
"product_reference": "xen-libs-32bit-4.16.0_06-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-32bit-4.16.0_06-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.x86_64"
},
"product_reference": "xen-libs-32bit-4.16.0_06-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.16.0_06-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.aarch64"
},
"product_reference": "xen-tools-4.16.0_06-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.16.0_06-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.ppc64le"
},
"product_reference": "xen-tools-4.16.0_06-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.16.0_06-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.s390x"
},
"product_reference": "xen-tools-4.16.0_06-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.16.0_06-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.x86_64"
},
"product_reference": "xen-tools-4.16.0_06-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.16.0_06-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.aarch64"
},
"product_reference": "xen-tools-domU-4.16.0_06-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.16.0_06-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.ppc64le"
},
"product_reference": "xen-tools-domU-4.16.0_06-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.16.0_06-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.s390x"
},
"product_reference": "xen-tools-domU-4.16.0_06-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.16.0_06-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.x86_64"
},
"product_reference": "xen-tools-domU-4.16.0_06-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-0001",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0001"
}
],
"notes": [
{
"category": "general",
"text": "Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0001",
"url": "https://www.suse.com/security/cve/CVE-2022-0001"
},
{
"category": "external",
"summary": "SUSE Bug 1191580 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1191580"
},
{
"category": "external",
"summary": "SUSE Bug 1196901 for CVE-2022-0001",
"url": "https://bugzilla.suse.com/1196901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-libs-32bit-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.16.0_06-3.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.16.0_06-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2022-0001"
}
]
}
RHSA-2022:1975
Vulnerability from csaf_redhat - Published: 2022-05-10 13:43 - Updated: 2026-03-21 05:05Summary
Red Hat Security Advisory: kernel-rt security and bug fix update
Severity
Important
Notes
Topic: An update for kernel-rt is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
* kernel: fget: check that the fd still exists after getting a ref to it (CVE-2021-4083)
* kernel: avoid cyclic entity chains due to malformed USB descriptors (CVE-2020-0404)
* kernel: integer overflow in k_ascii() in drivers/tty/vt/keyboard.c (CVE-2020-13974)
* kernel: out-of-bounds read in bpf_skb_change_head() of filter.c due to a use-after-free (CVE-2021-0941)
* kernel: joydev: zero size passed to joydev_handle_JSIOCSBTNMAP() (CVE-2021-3612)
* kernel: reading /proc/sysvipc/shm does not scale with large shared memory segment counts (CVE-2021-3669)
* kernel: out-of-bound Read in qrtr_endpoint_post in net/qrtr/qrtr.c (CVE-2021-3743)
* kernel: crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd() (CVE-2021-3744)
* kernel: possible use-after-free in bluetooth module (CVE-2021-3752)
* kernel: unaccounted ipc objects in Linux kernel lead to breaking memcg limits and DoS attacks (CVE-2021-3759)
* kernel: DoS in ccp_run_aes_gcm_cmd() function (CVE-2021-3764)
* kernel: sctp: Invalid chunks may be used to remotely remove existing associations (CVE-2021-3772)
* kernel: lack of port sanity checking in natd and netfilter leads to exploit of OpenVPN clients (CVE-2021-3773)
* kernel: possible leak or coruption of data residing on hugetlbfs (CVE-2021-4002)
* kernel: security regression for CVE-2018-13405 (CVE-2021-4037)
* kernel: Buffer overwrite in decode_nfs_fh function (CVE-2021-4157)
* kernel: cgroup: Use open-time creds and namespace for migration perm checks (CVE-2021-4197)
* kernel: Race condition in races in sk_peer_pid and sk_peer_cred accesses (CVE-2021-4203)
* kernel: new DNS Cache Poisoning Attack based on ICMP fragment needed packets replies (CVE-2021-20322)
* hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715 (CVE-2021-26401)
* kernel: Local privilege escalation due to incorrect BPF JIT branch displacement computation (CVE-2021-29154)
* kernel: use-after-free in hso_free_net_device() in drivers/net/usb/hso.c (CVE-2021-37159)
* kernel: eBPF multiplication integer overflow in prealloc_elems_and_freelist() in kernel/bpf/stackmap.c leads to out-of-bounds write (CVE-2021-41864)
* kernel: Heap buffer overflow in firedtv driver (CVE-2021-42739)
* kernel: an array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (CVE-2021-43389)
* kernel: mwifiex_usb_recv() in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker to cause DoS via crafted USB device (CVE-2021-43976)
* kernel: use-after-free in the TEE subsystem (CVE-2021-44733)
* kernel: information leak in the IPv6 implementation (CVE-2021-45485)
* kernel: information leak in the IPv4 implementation (CVE-2021-45486)
* hw: cpu: intel: Branch History Injection (BHI) (CVE-2022-0001)
* hw: cpu: intel: Intra-Mode BTI (CVE-2022-0002)
* kernel: Local denial of service in bond_ipsec_add_sa (CVE-2022-0286)
* kernel: DoS in sctp_addto_chunk in net/sctp/sm_make_chunk.c (CVE-2022-0322)
* kernel: FUSE allows UAF reads of write() buffers, allowing theft of (partial) /etc/shadow hashes (CVE-2022-1011)
* kernel: use-after-free in nouveau kernel module (CVE-2020-27820)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.6 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw linked list corruption in the Linux kernel for USB Video Class driver functionality was found in the way user connects web camera to the USB port. A local user could use this flaw to crash the system.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw integer overflow in the Linux kernel's virtual terminal keyboard driver was found in the way the user sends some specific keyboard code multiple times. A local user could use this flaw to crash the system or possibly escalate their privileges on the system.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing device (that is not common to remove video card physically without power-off, but same happens if "unbind" the driver).
4.1 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
An out-of-bounds (OOB) memory access flaw was found in net/core/filter.c in __bpf_skb_max_len in the Linux kernel. A missing sanity check to the current MTU check may allow a local attacker with special user privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An out-of-bounds memory write flaw was found in the Linux kernel’s joystick devices subsystem, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An out-of-bounds (OOB) memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel. A missing sanity check allows a local attacker to gain access to out-of-bounds memory, leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.
6.2 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel. A memory leak in the ccp-ops crypto driver can allow attackers to cause a denial of service. This vulnerability is similar with the older CVE-2019-18808. The highest threat from this vulnerability is to system availability.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
7.0 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A memory leak flaw was found in the Linux kernel's ccp_run_aes_gcm_cmd() function that allows an attacker to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system availability.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses.
5.9 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.
5.9 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdma_cm device node. While this access is unlikely to leak sensitive user information, it can be further used to defeat existing kernel protection mechanisms.
CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorAffected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the memory pages. A local user could use this flaw to get unauthorized access to some data.
5.1 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. This can lead to excessive permissions granted in case when they should not. This vulnerability is similar to the previous CVE-2018-13405 and adds the missed fix for the XFS.
4.4 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allows a local user to crash the system or escalate their privileges on the system.
7.4 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State (SEV-ES). A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction (for example, outs or ins) using the exit reason SVM_EXIT_IOIO. This issue results in a crash of the entire system or a potential guest-to-host escape scenario.
8.2 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An out of memory bounds write flaw (1 or 2 bytes of memory) in the Linux kernel NFS subsystem was found in the way users use mirroring (replication of files with NFS). A user, having access to the NFS mount, could potentially use this flaw to crash the system or escalate privileges on the system.
5.9 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1 versions of control groups. A local user could use this flaw to crash the system or escalate their privileges on the system.
6.3 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information.
5.8 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.
7.4 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in hw. The speculative execution window of AMD LFENCE/JMP mitigation (MITIGATION V2-2) may be large enough to be exploited on AMD CPUs.
4.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernels eBPF implementation. By default, accessing the eBPF verifier is only accessible to privileged users with CAP_SYS_ADMIN. A local user with the ability to insert eBPF instructions can abuse a flaw in eBPF to corrupt memory. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
7.0 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw use-after-free in the Linux kernel USB High Speed Mobile Devices functionality was found in the way user detaches USB device. A local user could use this flaw to crash the system or escalate their privileges on the system.
6.4 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An out-of-bounds (OOB) memory write flaw was found in prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the bpf in the Linux kernel. In this flaw, the multiplication to calculate the size could lead to an integer overflow which could allow a local attacker, with a special user privilege, to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A heap-based buffer overflow flaw was found in the Linux kernel FireDTV media card driver, where the user calls the CA_SEND_MSG ioctl. This flaw allows a local user of the host machine to crash the system or escalate privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An improper validation of an array index and out of bounds memory read in the Linux kernel's Integrated Services Digital Network (ISDN) functionality was found in the way users call ioctl CMTPCONNADD. A local user could use this flaw to crash the system or starve the resources causing denial of service.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A denial of service flaw was found in mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c in the usb subsystem of the Linux kernel. This is due to a missing clean-up for a malfunctioning usb device with an unknown recv_type.
4.6 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free flaw in the Linux kernel TEE (Trusted Execution Environment) subsystem was found in the way user calls ioctl TEE_IOC_OPEN_SESSION or TEE_IOC_INVOKE. A local user could use this flaw to crash the system or escalate their privileges on the system. If the Linux system non configured with the CONFIG_PREEMPT option or CONFIG_CPU_SW_DOMAIN_PAN option enabled, then it is unlikely that a user can trigger this issue.
7.4 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An information leak flaw was found in the Linux kernel’s IPv6 implementation in the __ipv6_select_ident in net/ipv6/output_core.c function. The use of a small hash table in IP ID generation allows a remote attacker to reveal sensitive information.
7.5 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An information leak flaw was found in the Linux kernel’s IPv4 implementation in the ip_rt_init in net/ipv4/route.c function. The use of a small hash table in IP ID generation allows a remote attacker to reveal sensitive information.
CWE-497 - Exposure of Sensitive System Information to an Unauthorized Control SphereAffected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
In the Linux kernel, the following vulnerability has been resolved: dm: fix mempool NULL pointer race when completing IO dm_io_dec_pending() calls end_io_acct() first and will then dec md in-flight pending count. But if a task is swapping DM table at same time this can result in a crash due to mempool->elements being NULL: task1 task2 do_resume ->do_suspend ->dm_wait_for_completion bio_endio ->clone_endio ->dm_io_dec_pending ->end_io_acct ->wakeup task1 ->dm_swap_table ->__bind ->__bind_mempools ->bioset_exit ->mempool_exit ->free_io [ 67.330330] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 ...... [ 67.330494] pstate: 80400085 (Nzcv daIf +PAN -UAO) [ 67.330510] pc : mempool_free+0x70/0xa0 [ 67.330515] lr : mempool_free+0x4c/0xa0 [ 67.330520] sp : ffffff8008013b20 [ 67.330524] x29: ffffff8008013b20 x28: 0000000000000004 [ 67.330530] x27: ffffffa8c2ff40a0 x26: 00000000ffff1cc8 [ 67.330535] x25: 0000000000000000 x24: ffffffdada34c800 [ 67.330541] x23: 0000000000000000 x22: ffffffdada34c800 [ 67.330547] x21: 00000000ffff1cc8 x20: ffffffd9a1304d80 [ 67.330552] x19: ffffffdada34c970 x18: 000000b312625d9c [ 67.330558] x17: 00000000002dcfbf x16: 00000000000006dd [ 67.330563] x15: 000000000093b41e x14: 0000000000000010 [ 67.330569] x13: 0000000000007f7a x12: 0000000034155555 [ 67.330574] x11: 0000000000000001 x10: 0000000000000001 [ 67.330579] x9 : 0000000000000000 x8 : 0000000000000000 [ 67.330585] x7 : 0000000000000000 x6 : ffffff80148b5c1a [ 67.330590] x5 : ffffff8008013ae0 x4 : 0000000000000001 [ 67.330596] x3 : ffffff80080139c8 x2 : ffffff801083bab8 [ 67.330601] x1 : 0000000000000000 x0 : ffffffdada34c970 [ 67.330609] Call trace: [ 67.330616] mempool_free+0x70/0xa0 [ 67.330627] bio_put+0xf8/0x110 [ 67.330638] dec_pending+0x13c/0x230 [ 67.330644] clone_endio+0x90/0x180 [ 67.330649] bio_endio+0x198/0x1b8 [ 67.330655] dec_pending+0x190/0x230 [ 67.330660] clone_endio+0x90/0x180 [ 67.330665] bio_endio+0x198/0x1b8 [ 67.330673] blk_update_request+0x214/0x428 [ 67.330683] scsi_end_request+0x2c/0x300 [ 67.330688] scsi_io_completion+0xa0/0x710 [ 67.330695] scsi_finish_command+0xd8/0x110 [ 67.330700] scsi_softirq_done+0x114/0x148 [ 67.330708] blk_done_softirq+0x74/0xd0 [ 67.330716] __do_softirq+0x18c/0x374 [ 67.330724] irq_exit+0xb4/0xb8 [ 67.330732] __handle_domain_irq+0x84/0xc0 [ 67.330737] gic_handle_irq+0x148/0x1b0 [ 67.330744] el1_irq+0xe8/0x190 [ 67.330753] lpm_cpuidle_enter+0x4f8/0x538 [ 67.330759] cpuidle_enter_state+0x1fc/0x398 [ 67.330764] cpuidle_enter+0x18/0x20 [ 67.330772] do_idle+0x1b4/0x290 [ 67.330778] cpu_startup_entry+0x20/0x28 [ 67.330786] secondary_start_kernel+0x160/0x170 Fix this by: 1) Establishing pointers to 'struct dm_io' members in dm_io_dec_pending() so that they may be passed into end_io_acct() _after_ free_io() is called. 2) Moving end_io_acct() after free_io().
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A vulnerability was found in the Linux kernel's TCP subsystem in the tcp_sendmsg_locked() function, which can lead to page fragment corruption during a page fault, which occurs when a TCP stream experiences nested access to the task page fragment due to a page fault while handling memory-mapped user-space data from a CIFS mount.
6.3 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A vulnerability was found in the Linux kernel's ethtool implementation in the ioctl handling of coalesce settings, where the system attempts to change coalesce settings using the ethtool_set_coalesce() function without verifying the availability of both the .get_coalesce() and .set_coalesce() callbacks, leading to a potential NULL pointer dereference causing system instability and crashes during network operations.
4.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A vulnerability was found in the Linux kernel's mptcp component in the __mptcp_push_pending() function, where a deadlock can occur when calling mptcp_flush_join_list() with the subflow socket lock held. This happens if the synchronization function mptcp_sockopt_sync_all() is invoked, causing the system to hang due to competing locks, this vulnerability can lead to significant disruptions in MultiPath TCP operations.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A vulnerability was found in the Linux kernel's RDMA/irdma driver. Improper memory management in the add_pble_prm function fails to manage memory correctly, resulting in a user-after-free condition that can lead to exploitation. This flaw allows an attacker to manipulate memory access potentially, resulting in data corruption or system crashes.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in hw. The Branch History Injection (BHI) describes a specific form of intra-mode BTI. This flaw allows an unprivileged attacker to manipulate the branch history before transitioning to supervisor or VMX root mode. This issue is an effort to cause an indirect branch predictor to select a specific predictor entry for an indirect branch, and a disclosure gadget at the predicted target will transiently execute. This execution is possible since the relevant branch history may contain branches taken in previous security contexts, and in particular, in other predictor modes.
4.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in hw. The Intra-mode BTI refers to a variant of Branch Target Injection aka SpectreV2 (BTI) where an indirect branch speculates to an aliased predictor entry for a different indirect branch in the same predictor mode, and a disclosure gadget at the predicted target transiently executes. These predictor entries may contain targets corresponding to the targets of an indirect near jump, indirect near call, and near return instructions, even if these branches were only transiently executed. The managed runtimes provide an attacker with the means to create the aliasing required for intra-mode BTI attacks.
4.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A NULL pointer dereference flaw was found in the Linux kernel’s bonding driver in the way a user bonds non existing or fake device. This flaw allows a local user to crash the system, causing a denial of service.
5.1 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw, an attempt to use more buffer than is allocated triggers a BUG_ON issue, leading to a denial of service (DOS).
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An information leak flaw was found via ext4_extent_header in fs/ext4/extents.c in the Linux kernel. This flaw could allow a local attacker to cause a denial of service.
7.1 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). This flaw allows a local user to gain unauthorized access to data from the FUSE filesystem, resulting in privilege escalation.
7.0 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array().
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
An issue was discovered in the Linux kernel through 5.16-rc6. ef100_update_stats in drivers/net/ethernet/sfc/ef100_nic.c lacks check of the return value of kmalloc().
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers/gpu/drm/amd/amdkfd/kfd_crat.c lacks check of the return value of kmemdup().
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
A vulnerability was found in copy_from_user in 64-bit versions of the Linux kernel. This flaw allows a local attacker to bypass the "access_ok" sanity check and pass a kernel pointer to copy_from_user(), resulting in kernel data leaking.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Low
A flaw was found in the IPv6 module of the Linux kernel. The arg.result was not used consistently in fib6_rule_lookup, sometimes holding rt6_info and other times fib6_info. This was not accounted for in other parts of the code where rt6_info was expected unconditionally, potentially leading to a kernel panic in fib6_rule_suppress.
5.9 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
288 references
| URL | Category |
|---|---|
| https://access.redhat.com/errata/RHSA-2022:1975 | self |
| https://access.redhat.com/security/updates/classi… | external |
| https://access.redhat.com/documentation/en-us/red… | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1901726 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1903578 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1905749 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1919791 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1946684 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1951739 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1974079 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1985353 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1986473 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1997467 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1997961 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1999544 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1999675 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2000627 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2000694 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2004949 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2010463 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2013180 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2014230 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2016169 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2018205 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2025003 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2025726 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2027239 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2029923 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2030747 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2034342 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2035652 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2036934 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2037019 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2039911 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2039914 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2042822 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2061700 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2061712 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2061721 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2064855 | external |
| https://security.access.redhat.com/data/csaf/v2/a… | self |
| https://access.redhat.com/security/cve/CVE-2020-0404 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1919791 | external |
| https://www.cve.org/CVERecord?id=CVE-2020-0404 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2020-0404 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2020-13974 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2016169 | external |
| https://www.cve.org/CVERecord?id=CVE-2020-13974 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2020-13974 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2020-27820 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1901726 | external |
| https://www.cve.org/CVERecord?id=CVE-2020-27820 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2020-27820 | external |
| https://lore.kernel.org/dri-devel/20201103194912.… | external |
| https://lore.kernel.org/dri-devel/20201103194912.… | external |
| https://lore.kernel.org/dri-devel/20201103194912.… | external |
| https://access.redhat.com/security/cve/CVE-2021-0941 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2018205 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-0941 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-0941 | external |
| https://android.googlesource.com/kernel/common/+/… | external |
| https://access.redhat.com/security/cve/CVE-2021-3612 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1974079 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3612 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3612 | external |
| https://lore.kernel.org/linux-input/2021062012003… | external |
| https://access.redhat.com/security/cve/CVE-2021-3669 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1986473 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3669 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3669 | external |
| https://access.redhat.com/security/cve/CVE-2021-3743 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1997961 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3743 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3743 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/n… | external |
| https://lists.openwall.net/netdev/2021/08/17/124 | external |
| https://access.redhat.com/security/cve/CVE-2021-3744 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2000627 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3744 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3744 | external |
| https://kernel.googlesource.com/pub/scm/linux/ker… | external |
| https://access.redhat.com/security/cve/CVE-2021-3752 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1999544 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3752 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3752 | external |
| https://lore.kernel.org/lkml/20211115165435.13324… | external |
| https://www.openwall.com/lists/oss-security/2021/… | external |
| https://access.redhat.com/security/cve/CVE-2021-3759 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1999675 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3759 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3759 | external |
| https://lore.kernel.org/linux-mm/1626333284-1404-… | external |
| https://access.redhat.com/security/cve/CVE-2021-3764 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1997467 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3764 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3764 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2021-3772 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2000694 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3772 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3772 | external |
| https://access.redhat.com/security/cve/CVE-2021-3773 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2004949 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3773 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3773 | external |
| https://access.redhat.com/security/cve/CVE-2021-3923 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2019643 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3923 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3923 | external |
| https://access.redhat.com/security/cve/CVE-2021-4002 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2025726 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-4002 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-4002 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://www.openwall.com/lists/oss-security/2021/… | external |
| https://access.redhat.com/security/cve/CVE-2021-4037 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2027239 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-4037 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-4037 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2021-4083 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2029923 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-4083 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-4083 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2021-4093 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2028584 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-4093 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-4093 | external |
| https://bugs.chromium.org/p/project-zero/issues/d… | external |
| https://access.redhat.com/security/cve/CVE-2021-4157 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2034342 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-4157 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-4157 | external |
| https://lore.kernel.org/lkml/20210517140244.82218… | external |
| https://access.redhat.com/security/cve/CVE-2021-4197 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2035652 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-4197 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-4197 | external |
| https://lore.kernel.org/lkml/20211209214707.80561… | external |
| https://access.redhat.com/security/cve/CVE-2021-4203 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2036934 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-4203 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-4203 | external |
| https://bugs.chromium.org/p/project-zero/issues/d… | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/n… | external |
| https://lore.kernel.org/netdev/20210929225750.254… | external |
| https://access.redhat.com/security/cve/CVE-2021-20322 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2014230 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-20322 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-20322 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2021-26401 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2061700 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-26401 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-26401 | external |
| https://www.amd.com/en/corporate/product-security… | external |
| https://access.redhat.com/security/cve/CVE-2021-29154 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1946684 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-29154 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-29154 | external |
| https://access.redhat.com/security/cve/CVE-2021-37159 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1985353 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-37159 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-37159 | external |
| https://www.spinics.net/lists/linux-usb/msg202228.html | external |
| https://access.redhat.com/security/cve/CVE-2021-41864 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2010463 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-41864 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-41864 | external |
| https://github.com/torvalds/linux/commit/30e29a9a… | external |
| https://access.redhat.com/security/cve/CVE-2021-42739 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1951739 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-42739 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-42739 | external |
| https://lore.kernel.org/linux-media/YHaulytonFcW+… | external |
| https://access.redhat.com/security/cve/CVE-2021-43389 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2013180 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-43389 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-43389 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://lore.kernel.org/netdev/CAFcO6XOvGQrRTaTka… | external |
| https://access.redhat.com/security/cve/CVE-2021-43976 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2025003 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-43976 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-43976 | external |
| https://patchwork.kernel.org/project/linux-wirele… | external |
| https://access.redhat.com/security/cve/CVE-2021-44733 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2030747 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-44733 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-44733 | external |
| https://lore.kernel.org/lkml/20211214123540.17894… | external |
| https://access.redhat.com/security/cve/CVE-2021-45485 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2039911 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-45485 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-45485 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://lore.kernel.org/all/20210529110746.6796-1… | external |
| https://access.redhat.com/security/cve/CVE-2021-45486 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2039914 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-45486 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-45486 | external |
| https://arxiv.org/pdf/2112.09604.pdf | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/s… | external |
| https://access.redhat.com/security/cve/CVE-2021-47435 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2282879 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-47435 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-47435 | external |
| https://access.redhat.com/security/cve/CVE-2021-47544 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2283406 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-47544 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-47544 | external |
| https://lore.kernel.org/linux-cve-announce/202405… | external |
| https://access.redhat.com/security/cve/CVE-2021-47556 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2283393 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-47556 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-47556 | external |
| https://lore.kernel.org/linux-cve-announce/202405… | external |
| https://access.redhat.com/security/cve/CVE-2021-47590 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2293237 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-47590 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-47590 | external |
| https://lore.kernel.org/linux-cve-announce/202406… | external |
| https://access.redhat.com/security/cve/CVE-2021-47614 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2293265 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-47614 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-47614 | external |
| https://lore.kernel.org/linux-cve-announce/202406… | external |
| https://access.redhat.com/security/cve/CVE-2022-0001 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2061712 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-0001 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-0001 | external |
| https://www.intel.com/content/www/us/en/developer… | external |
| https://www.intel.com/content/www/us/en/security-… | external |
| https://www.vusec.net/projects/bhi-spectre-bhb/ | external |
| https://access.redhat.com/security/cve/CVE-2022-0002 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2061721 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-0002 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-0002 | external |
| https://access.redhat.com/security/cve/CVE-2022-0286 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2037019 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-0286 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-0286 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2022-0322 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2042822 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-0322 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-0322 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2022-0850 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2060606 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-0850 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-0850 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://syzkaller.appspot.com/bug?id=78e9ad0e6952… | external |
| https://access.redhat.com/security/cve/CVE-2022-1011 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2064855 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-1011 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-1011 | external |
| https://lore.kernel.org/lkml/20220414110839.24154… | external |
| https://access.redhat.com/security/cve/CVE-2022-3105 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2153067 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-3105 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-3105 | external |
| https://access.redhat.com/security/cve/CVE-2022-3106 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2153066 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-3106 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-3106 | external |
| https://access.redhat.com/security/cve/CVE-2022-3108 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2153052 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-3108 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-3108 | external |
| https://access.redhat.com/security/cve/CVE-2023-0459 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2216383 | external |
| https://www.cve.org/CVERecord?id=CVE-2023-0459 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2023-0459 | external |
| https://github.com/torvalds/linux/commit/4b842e4e… | external |
| https://access.redhat.com/security/cve/CVE-2023-3022 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2211440 | external |
| https://www.cve.org/CVERecord?id=CVE-2023-3022 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2023-3022 | external |
Acknowledgments
Red Hat
Jeremy Cline
Murray McAllister
Venustech
Active Defense Lab
NSFOCUS Security Team
Likang Luo
Zhejiang University
Yutian Yang
elijahbai, jitxie, huntazhang.
University of California, Riverside
Keyu Man, Xin'an Zhou and Zhiyun Qian
AMD
axis.com
Patrik Lantz
Intel
360 Vulnerability Research Institute
De4dCr0w
Tencent Security Yunding Lab
elijahbai
Miklos Szeredi
Jann Horn
Jiasheng Jiang
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-rt is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* kernel: fget: check that the fd still exists after getting a ref to it (CVE-2021-4083)\n\n* kernel: avoid cyclic entity chains due to malformed USB descriptors (CVE-2020-0404)\n\n* kernel: integer overflow in k_ascii() in drivers/tty/vt/keyboard.c (CVE-2020-13974)\n\n* kernel: out-of-bounds read in bpf_skb_change_head() of filter.c due to a use-after-free (CVE-2021-0941)\n\n* kernel: joydev: zero size passed to joydev_handle_JSIOCSBTNMAP() (CVE-2021-3612)\n\n* kernel: reading /proc/sysvipc/shm does not scale with large shared memory segment counts (CVE-2021-3669)\n\n* kernel: out-of-bound Read in qrtr_endpoint_post in net/qrtr/qrtr.c (CVE-2021-3743)\n\n* kernel: crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd() (CVE-2021-3744)\n\n* kernel: possible use-after-free in bluetooth module (CVE-2021-3752)\n\n* kernel: unaccounted ipc objects in Linux kernel lead to breaking memcg limits and DoS attacks (CVE-2021-3759)\n\n* kernel: DoS in ccp_run_aes_gcm_cmd() function (CVE-2021-3764)\n\n* kernel: sctp: Invalid chunks may be used to remotely remove existing associations (CVE-2021-3772)\n\n* kernel: lack of port sanity checking in natd and netfilter leads to exploit of OpenVPN clients (CVE-2021-3773)\n\n* kernel: possible leak or coruption of data residing on hugetlbfs (CVE-2021-4002)\n\n* kernel: security regression for CVE-2018-13405 (CVE-2021-4037)\n\n* kernel: Buffer overwrite in decode_nfs_fh function (CVE-2021-4157)\n\n* kernel: cgroup: Use open-time creds and namespace for migration perm checks (CVE-2021-4197)\n\n* kernel: Race condition in races in sk_peer_pid and sk_peer_cred accesses (CVE-2021-4203)\n\n* kernel: new DNS Cache Poisoning Attack based on ICMP fragment needed packets replies (CVE-2021-20322)\n\n* hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715 (CVE-2021-26401)\n\n* kernel: Local privilege escalation due to incorrect BPF JIT branch displacement computation (CVE-2021-29154)\n\n* kernel: use-after-free in hso_free_net_device() in drivers/net/usb/hso.c (CVE-2021-37159)\n\n* kernel: eBPF multiplication integer overflow in prealloc_elems_and_freelist() in kernel/bpf/stackmap.c leads to out-of-bounds write (CVE-2021-41864)\n\n* kernel: Heap buffer overflow in firedtv driver (CVE-2021-42739)\n\n* kernel: an array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (CVE-2021-43389)\n\n* kernel: mwifiex_usb_recv() in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker to cause DoS via crafted USB device (CVE-2021-43976)\n\n* kernel: use-after-free in the TEE subsystem (CVE-2021-44733)\n\n* kernel: information leak in the IPv6 implementation (CVE-2021-45485)\n\n* kernel: information leak in the IPv4 implementation (CVE-2021-45486)\n\n* hw: cpu: intel: Branch History Injection (BHI) (CVE-2022-0001)\n\n* hw: cpu: intel: Intra-Mode BTI (CVE-2022-0002)\n\n* kernel: Local denial of service in bond_ipsec_add_sa (CVE-2022-0286)\n\n* kernel: DoS in sctp_addto_chunk in net/sctp/sm_make_chunk.c (CVE-2022-0322)\n\n* kernel: FUSE allows UAF reads of write() buffers, allowing theft of (partial) /etc/shadow hashes (CVE-2022-1011)\n\n* kernel: use-after-free in nouveau kernel module (CVE-2020-27820)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.6 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:1975",
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.6_release_notes/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.6_release_notes/"
},
{
"category": "external",
"summary": "1901726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1901726"
},
{
"category": "external",
"summary": "1903578",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1903578"
},
{
"category": "external",
"summary": "1905749",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1905749"
},
{
"category": "external",
"summary": "1919791",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1919791"
},
{
"category": "external",
"summary": "1946684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1946684"
},
{
"category": "external",
"summary": "1951739",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951739"
},
{
"category": "external",
"summary": "1974079",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1974079"
},
{
"category": "external",
"summary": "1985353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1985353"
},
{
"category": "external",
"summary": "1986473",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1986473"
},
{
"category": "external",
"summary": "1997467",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1997467"
},
{
"category": "external",
"summary": "1997961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1997961"
},
{
"category": "external",
"summary": "1999544",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1999544"
},
{
"category": "external",
"summary": "1999675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1999675"
},
{
"category": "external",
"summary": "2000627",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2000627"
},
{
"category": "external",
"summary": "2000694",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2000694"
},
{
"category": "external",
"summary": "2004949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004949"
},
{
"category": "external",
"summary": "2010463",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2010463"
},
{
"category": "external",
"summary": "2013180",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2013180"
},
{
"category": "external",
"summary": "2014230",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2014230"
},
{
"category": "external",
"summary": "2016169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2016169"
},
{
"category": "external",
"summary": "2018205",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2018205"
},
{
"category": "external",
"summary": "2025003",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2025003"
},
{
"category": "external",
"summary": "2025726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2025726"
},
{
"category": "external",
"summary": "2027239",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2027239"
},
{
"category": "external",
"summary": "2029923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2029923"
},
{
"category": "external",
"summary": "2030747",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030747"
},
{
"category": "external",
"summary": "2034342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2034342"
},
{
"category": "external",
"summary": "2035652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2035652"
},
{
"category": "external",
"summary": "2036934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036934"
},
{
"category": "external",
"summary": "2037019",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037019"
},
{
"category": "external",
"summary": "2039911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2039911"
},
{
"category": "external",
"summary": "2039914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2039914"
},
{
"category": "external",
"summary": "2042822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2042822"
},
{
"category": "external",
"summary": "2061700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2061700"
},
{
"category": "external",
"summary": "2061712",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2061712"
},
{
"category": "external",
"summary": "2061721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2061721"
},
{
"category": "external",
"summary": "2064855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064855"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_1975.json"
}
],
"title": "Red Hat Security Advisory: kernel-rt security and bug fix update",
"tracking": {
"current_release_date": "2026-03-21T05:05:09+00:00",
"generator": {
"date": "2026-03-21T05:05:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.3"
}
},
"id": "RHSA-2022:1975",
"initial_release_date": "2022-05-10T13:43:14+00:00",
"revision_history": [
{
"date": "2022-05-10T13:43:14+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-05-10T13:43:14+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-03-21T05:05:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux NFV (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::nfv"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux RT (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::realtime"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"product": {
"name": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"product_id": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@4.18.0-372.9.1.rt7.166.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-core@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-core@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-extra@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_id": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@4.18.0-372.9.1.rt7.166.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src"
},
"product_reference": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux NFV (v. 8)",
"product_id": "NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "NFV-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src"
},
"product_reference": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64 as a component of Red Hat Enterprise Linux RT (v. 8)",
"product_id": "RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"relates_to_product_reference": "RT-8.6.0.GA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-0404",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2021-01-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1919791"
}
],
"notes": [
{
"category": "description",
"text": "A flaw linked list corruption in the Linux kernel for USB Video Class driver functionality was found in the way user connects web camera to the USB port. A local user could use this flaw to crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: avoid cyclic entity chains due to malformed USB descriptors",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-0404"
},
{
"category": "external",
"summary": "RHBZ#1919791",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1919791"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-0404",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-0404"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-0404",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-0404"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=68035c80e129c4cfec659aac4180354530b26527",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=68035c80e129c4cfec659aac4180354530b26527"
}
],
"release_date": "2021-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module uvcvideo from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: avoid cyclic entity chains due to malformed USB descriptors"
},
{
"cve": "CVE-2020-13974",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2021-01-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2016169"
}
],
"notes": [
{
"category": "description",
"text": "A flaw integer overflow in the Linux kernel\u0027s virtual terminal keyboard driver was found in the way the user sends some specific keyboard code multiple times. A local user could use this flaw to crash the system or possibly escalate their privileges on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: integer overflow in k_ascii() in drivers/tty/vt/keyboard.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "No code depends on this integer overflow so it is unlikely that the vulnerability can be used for anything apart from crashing the system. The impact has been reduced to Moderate from Important based on this analysis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-13974"
},
{
"category": "external",
"summary": "RHBZ#2016169",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2016169"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-13974",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13974"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-13974",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13974"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b86dab054059b970111b5516ae548efaae5b3aae",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b86dab054059b970111b5516ae548efaae5b3aae"
}
],
"release_date": "2020-03-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: integer overflow in k_ascii() in drivers/tty/vt/keyboard.c"
},
{
"acknowledgments": [
{
"names": [
"Jeremy Cline"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2020-27820",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-11-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1901726"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Linux kernel, where a use-after-frees in nouveau\u0027s postclose() handler could happen if removing device (that is not common to remove video card physically without power-off, but same happens if \"unbind\" the driver).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free in nouveau kernel module",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is rated as having a Low impact because the issue can only be triggered by an privileged local user (or user with physical access) as the issue only happens during unbinding the driver or removing the device.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-27820"
},
{
"category": "external",
"summary": "RHBZ#1901726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1901726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-27820",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27820"
},
{
"category": "external",
"summary": "https://lore.kernel.org/dri-devel/20201103194912.184413-2-jcline@redhat.com/",
"url": "https://lore.kernel.org/dri-devel/20201103194912.184413-2-jcline@redhat.com/"
},
{
"category": "external",
"summary": "https://lore.kernel.org/dri-devel/20201103194912.184413-3-jcline@redhat.com/",
"url": "https://lore.kernel.org/dri-devel/20201103194912.184413-3-jcline@redhat.com/"
},
{
"category": "external",
"summary": "https://lore.kernel.org/dri-devel/20201103194912.184413-4-jcline@redhat.com/",
"url": "https://lore.kernel.org/dri-devel/20201103194912.184413-4-jcline@redhat.com/"
}
],
"release_date": "2020-11-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module nouveau from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: use-after-free in nouveau kernel module"
},
{
"cve": "CVE-2021-0941",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2021-10-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2018205"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds (OOB) memory access flaw was found in net/core/filter.c in __bpf_skb_max_len in the Linux kernel. A missing sanity check to the current MTU check may allow a local attacker with special user privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: out-of-bounds read in bpf_skb_change_head() of filter.c due to a use-after-free",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The default Red Hat Enterprise Linux kernel prevents unprivileged users from being able to use eBPF by the kernel.unprivileged_bpf_disabled sysctl. This would require a privileged user with CAP_SYS_ADMIN or root to be able to abuse this flaw reducing its attack space.\n\nFor the Red Hat Enterprise Linux 7 the eBPF for unprivileged users is always disabled.\nFor the Red Hat Enterprise Linux 8 to confirm the current state, inspect the sysctl with the command:\n~~~\n# cat /proc/sys/kernel/unprivileged_bpf_disabled\n~~~\nThe setting of 1 would mean that unprivileged users can not use eBPF, mitigating the flaw.\n\nA kernel update will be required to mitigate the flaw for the root or users with CAP_SYS_ADMIN capabilities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-0941"
},
{
"category": "external",
"summary": "RHBZ#2018205",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2018205"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-0941",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0941"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-0941",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-0941"
},
{
"category": "external",
"summary": "https://android.googlesource.com/kernel/common/+/6306c1189e77a513bf02720450bb43bd4ba5d8ae%5E%21/#F0",
"url": "https://android.googlesource.com/kernel/common/+/6306c1189e77a513bf02720450bb43bd4ba5d8ae%5E%21/#F0"
}
],
"release_date": "2021-02-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: out-of-bounds read in bpf_skb_change_head() of filter.c due to a use-after-free"
},
{
"acknowledgments": [
{
"names": [
"Murray McAllister"
]
}
],
"cve": "CVE-2021-3612",
"cwe": {
"id": "CWE-805",
"name": "Buffer Access with Incorrect Length Value"
},
"discovery_date": "2021-06-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1974079"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds memory write flaw was found in the Linux kernel\u2019s joystick devices subsystem, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: joydev: zero size passed to joydev_handle_JSIOCSBTNMAP()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is rated as having a Moderate impact because for the Red Hat Enterprise Linux the patch that made it possible writing memory out of bounds not applied yet, but still before that patch possible read out of bounds. Both in the default configuration of Red Hat Enterprise Linux the joysticks devices driver is disabled, so only privileged local user can enable it.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3612"
},
{
"category": "external",
"summary": "RHBZ#1974079",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1974079"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3612",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3612"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3612",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3612"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-input/20210620120030.1513655-1-avlarkin82@gmail.com/",
"url": "https://lore.kernel.org/linux-input/20210620120030.1513655-1-avlarkin82@gmail.com/"
}
],
"release_date": "2021-06-20T12:28:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module joydev from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: joydev: zero size passed to joydev_handle_JSIOCSBTNMAP()"
},
{
"cve": "CVE-2021-3669",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2021-07-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1986473"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: reading /proc/sysvipc/shm does not scale with large shared memory segment counts",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3669"
},
{
"category": "external",
"summary": "RHBZ#1986473",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1986473"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3669",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3669"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3669",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3669"
}
],
"release_date": "2021-08-02T06:02:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options does not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: reading /proc/sysvipc/shm does not scale with large shared memory segment counts"
},
{
"acknowledgments": [
{
"names": [
"Active Defense Lab"
],
"organization": "Venustech"
}
],
"cve": "CVE-2021-3743",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2021-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1997961"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds (OOB) memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel. A missing sanity check allows a local attacker to gain access to out-of-bounds memory, leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: out-of-bound Read in qrtr_endpoint_post in net/qrtr/qrtr.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There was no shipped kernel version that was seen affected by this problem. These files are not built in our source code.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3743"
},
{
"category": "external",
"summary": "RHBZ#1997961",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1997961"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3743",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3743"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3743",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3743"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=7e78c597c3eb",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=7e78c597c3eb"
},
{
"category": "external",
"summary": "https://lists.openwall.net/netdev/2021/08/17/124",
"url": "https://lists.openwall.net/netdev/2021/08/17/124"
}
],
"release_date": "2021-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: out-of-bound Read in qrtr_endpoint_post in net/qrtr/qrtr.c"
},
{
"cve": "CVE-2021-3744",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2021-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2000627"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. A memory leak in the ccp-ops crypto driver can allow attackers to cause a denial of service. This vulnerability is similar with the older CVE-2019-18808. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3744"
},
{
"category": "external",
"summary": "RHBZ#2000627",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2000627"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3744",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3744"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3744",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3744"
},
{
"category": "external",
"summary": "https://kernel.googlesource.com/pub/scm/linux/kernel/git/herbert/crypto-2.6/+/505d9dcb0f7ddf9d075e729523a33d38642ae680%5E%21/#F0",
"url": "https://kernel.googlesource.com/pub/scm/linux/kernel/git/herbert/crypto-2.6/+/505d9dcb0f7ddf9d075e729523a33d38642ae680%5E%21/#F0"
}
],
"release_date": "2021-08-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation baser or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()"
},
{
"acknowledgments": [
{
"names": [
"Likang Luo"
],
"organization": "NSFOCUS Security Team"
}
],
"cve": "CVE-2021-3752",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2021-08-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1999544"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw was found in the Linux kernel\u2019s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: possible use-after-free in bluetooth module",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Moderate impact because Only local users with privileges to access the sock_dgram Bluetooth socket can trigger this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3752"
},
{
"category": "external",
"summary": "RHBZ#1999544",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1999544"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3752",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3752"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3752",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3752"
},
{
"category": "external",
"summary": "https://lore.kernel.org/lkml/20211115165435.133245729@linuxfoundation.org/",
"url": "https://lore.kernel.org/lkml/20211115165435.133245729@linuxfoundation.org/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2021/09/15/4",
"url": "https://www.openwall.com/lists/oss-security/2021/09/15/4"
}
],
"release_date": "2021-09-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation baser or stability. The possible solution is to disable Bluetooth completely: https://access.redhat.com/solutions/2682931",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: possible use-after-free in bluetooth module"
},
{
"acknowledgments": [
{
"names": [
"Yutian Yang"
],
"organization": "Zhejiang University"
}
],
"cve": "CVE-2021-3759",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2021-07-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1999675"
}
],
"notes": [
{
"category": "description",
"text": "A memory overflow vulnerability was found in the Linux kernel\u2019s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: unaccounted ipc objects in Linux kernel lead to breaking memcg limits and DoS attacks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3759"
},
{
"category": "external",
"summary": "RHBZ#1999675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1999675"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3759",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3759"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3759",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3759"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-mm/1626333284-1404-1-git-send-email-nglaive@gmail.com/",
"url": "https://lore.kernel.org/linux-mm/1626333284-1404-1-git-send-email-nglaive@gmail.com/"
}
],
"release_date": "2021-07-15T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: unaccounted ipc objects in Linux kernel lead to breaking memcg limits and DoS attacks"
},
{
"cve": "CVE-2021-3764",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2021-08-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1997467"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in the Linux kernel\u0027s ccp_run_aes_gcm_cmd() function that allows an attacker to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: DoS in ccp_run_aes_gcm_cmd() function",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3764"
},
{
"category": "external",
"summary": "RHBZ#1997467",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1997467"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3764",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3764"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3764",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3764"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=36cf515b9bbe",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=36cf515b9bbe"
}
],
"release_date": "2021-08-20T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: DoS in ccp_run_aes_gcm_cmd() function"
},
{
"cve": "CVE-2021-3772",
"cwe": {
"id": "CWE-354",
"name": "Improper Validation of Integrity Check Value"
},
"discovery_date": "2021-08-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2000694"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks if the attacker knows the IP-addresses and port numbers being used and the attacker can send packets with spoofed IP addresses.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: sctp: Invalid chunks may be used to remotely remove existing associations",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3772"
},
{
"category": "external",
"summary": "RHBZ#2000694",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2000694"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3772",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3772"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3772",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3772"
}
],
"release_date": "2021-09-08T06:38:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "As the SCTP module will be auto-loaded when required, its use can be disabled by preventing the module from loading with the following instructions:\nif\n# echo \"install sctp /bin/true\" \u003e\u003e /etc/modprobe.d/disable-sctp.conf\n\nThe system will need to be restarted if the SCTP modules are loaded. In most circumstances, the SCTP kernel modules will be unable to be unloaded while any network interfaces are active and the protocol is in use.\n\nIf the system requires this module to work correctly, this mitigation may not be suitable.\n\nIf you need further assistance, see KCS article https://access.redhat.com/solutions/41278 or contact Red Hat Global Support Services.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: sctp: Invalid chunks may be used to remotely remove existing associations"
},
{
"cve": "CVE-2021-3773",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2021-09-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2004949"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: lack of port sanity checking in natd and netfilter leads to exploit of OpenVPN clients",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3773"
},
{
"category": "external",
"summary": "RHBZ#2004949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2004949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3773",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3773"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3773",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3773"
}
],
"release_date": "2021-09-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options does not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: lack of port sanity checking in natd and netfilter leads to exploit of OpenVPN clients"
},
{
"acknowledgments": [
{
"names": [
"elijahbai, jitxie, huntazhang."
]
}
],
"cve": "CVE-2021-3923",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2021-11-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2019643"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u0027s implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdma_cm device node. While this access is unlikely to leak sensitive user information, it can be further used to defeat existing kernel protection mechanisms.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: stack information leak in infiniband RDMA",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3923"
},
{
"category": "external",
"summary": "RHBZ#2019643",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2019643"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3923",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3923"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3923",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3923"
}
],
"release_date": "2021-12-01T13:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options does not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: stack information leak in infiniband RDMA"
},
{
"cve": "CVE-2021-4002",
"cwe": {
"id": "CWE-459",
"name": "Incomplete Cleanup"
},
"discovery_date": "2021-11-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2025726"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw in the Linux kernel\u0027s hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget() which are aligned to PUD alignment with the fault of some of the memory pages. A local user could use this flaw to get unauthorized access to some data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: possible leak or coruption of data residing on hugetlbfs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-4002"
},
{
"category": "external",
"summary": "RHBZ#2025726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2025726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-4002",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-4002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4002"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=13e4ad2ce8df6e058ef482a31fdd81c725b0f7ea",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=13e4ad2ce8df6e058ef482a31fdd81c725b0f7ea"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a4a118f2eead1d6c49e00765de89878288d4b890",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a4a118f2eead1d6c49e00765de89878288d4b890"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2021/11/25/1",
"url": "https://www.openwall.com/lists/oss-security/2021/11/25/1"
}
],
"release_date": "2021-11-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: possible leak or coruption of data residing on hugetlbfs"
},
{
"cve": "CVE-2021-4037",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2021-11-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2027239"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. This can lead to excessive permissions granted in case when they should not. This vulnerability is similar to the previous CVE-2018-13405 and adds the missed fix for the XFS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: security regression for CVE-2018-13405",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Impact is Moderate, because if no configuration problems with the system, then unlikely higher impact than unauthorized read access.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-4037"
},
{
"category": "external",
"summary": "RHBZ#2027239",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2027239"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-4037",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4037"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-4037",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4037"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=01ea173e103e",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=01ea173e103e"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0fa3ecd87848",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0fa3ecd87848"
}
],
"release_date": "2021-09-16T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: security regression for CVE-2018-13405"
},
{
"cve": "CVE-2021-4083",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"discovery_date": "2021-12-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2029923"
}
],
"notes": [
{
"category": "description",
"text": "A read-after-free memory flaw was found in the Linux kernel\u0027s garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allows a local user to crash the system or escalate their privileges on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: fget: check that the fd still exists after getting a ref to it",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-4083"
},
{
"category": "external",
"summary": "RHBZ#2029923",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2029923"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-4083",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4083"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-4083",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4083"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=054aa8d439b9",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=054aa8d439b9"
}
],
"release_date": "2021-12-03T08:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: fget: check that the fd still exists after getting a ref to it"
},
{
"cve": "CVE-2021-4093",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-11-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2028584"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the KVM\u0027s AMD code for supporting the Secure Encrypted Virtualization-Encrypted State (SEV-ES). A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction (for example, outs or ins) using the exit reason SVM_EXIT_IOIO. This issue results in a crash of the entire system or a potential guest-to-host escape scenario.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: KVM: SVM: out-of-bounds read/write in sev_es_string_io",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "AMD Secure Encrypted Virtualization (SEV) is currently provided as a Technology Preview in RHEL and, therefore, unsupported for production use. For additional details please see https://access.redhat.com/articles/4491591 and https://access.redhat.com/support/offerings/techpreview.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-4093"
},
{
"category": "external",
"summary": "RHBZ#2028584",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2028584"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-4093",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4093"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-4093",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4093"
},
{
"category": "external",
"summary": "https://bugs.chromium.org/p/project-zero/issues/detail?id=2222",
"url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=2222"
}
],
"release_date": "2021-11-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: KVM: SVM: out-of-bounds read/write in sev_es_string_io"
},
{
"cve": "CVE-2021-4157",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2021-12-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2034342"
}
],
"notes": [
{
"category": "description",
"text": "An out of memory bounds write flaw (1 or 2 bytes of memory) in the Linux kernel NFS subsystem was found in the way users use mirroring (replication of files with NFS). A user, having access to the NFS mount, could potentially use this flaw to crash the system or escalate privileges on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Buffer overwrite in decode_nfs_fh function",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-4157"
},
{
"category": "external",
"summary": "RHBZ#2034342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2034342"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-4157",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4157"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-4157",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4157"
},
{
"category": "external",
"summary": "https://lore.kernel.org/lkml/20210517140244.822185482@linuxfoundation.org/",
"url": "https://lore.kernel.org/lkml/20210517140244.822185482@linuxfoundation.org/"
}
],
"release_date": "2021-05-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Buffer overwrite in decode_nfs_fh function"
},
{
"cve": "CVE-2021-4197",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2021-12-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2035652"
}
],
"notes": [
{
"category": "description",
"text": "An unprivileged write to the file handler flaw in the Linux kernel\u0027s control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1 versions of control groups. A local user could use this flaw to crash the system or escalate their privileges on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: cgroup: Use open-time creds and namespace for migration perm checks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-4197"
},
{
"category": "external",
"summary": "RHBZ#2035652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2035652"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-4197",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4197"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-4197",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4197"
},
{
"category": "external",
"summary": "https://lore.kernel.org/lkml/20211209214707.805617-1-tj@kernel.org/T/",
"url": "https://lore.kernel.org/lkml/20211209214707.805617-1-tj@kernel.org/T/"
}
],
"release_date": "2021-09-12T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "The mitigation not known. However, for the default configuration of the Red Hat Enterprise Linux it is not possible to trigger this vulnerability: if control groups (cgroups) not being used or being used with the default configuration or being used some other configuration where for example similar privileges for all processes (both for parent and for child processes), then no way to trigger this vulnerability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: cgroup: Use open-time creds and namespace for migration perm checks"
},
{
"cve": "CVE-2021-4203",
"cwe": {
"id": "CWE-366",
"name": "Race Condition within a Thread"
},
"discovery_date": "2022-01-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2036934"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Race condition in races in sk_peer_pid and sk_peer_cred accesses",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-4203"
},
{
"category": "external",
"summary": "RHBZ#2036934",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036934"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-4203",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4203"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-4203",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-4203"
},
{
"category": "external",
"summary": "https://bugs.chromium.org/p/project-zero/issues/detail?id=2230\u0026can=7\u0026q=modified-after%3Atoday-30\u0026sort=-modified\u0026colspec=ID%20Type%20Status%20Priority%20Milestone%20Owner%20Summary%20Modified%20Cve\u0026cells=tiles\u0026redir=1",
"url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=2230\u0026can=7\u0026q=modified-after%3Atoday-30\u0026sort=-modified\u0026colspec=ID%20Type%20Status%20Priority%20Milestone%20Owner%20Summary%20Modified%20Cve\u0026cells=tiles\u0026redir=1"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=35306eb23814",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=35306eb23814"
},
{
"category": "external",
"summary": "https://lore.kernel.org/netdev/20210929225750.2548112-1-eric.dumazet@gmail.com/T/",
"url": "https://lore.kernel.org/netdev/20210929225750.2548112-1-eric.dumazet@gmail.com/T/"
}
],
"release_date": "2021-09-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Race condition in races in sk_peer_pid and sk_peer_cred accesses"
},
{
"acknowledgments": [
{
"names": [
"Keyu Man, Xin\u0027an Zhou and Zhiyun Qian"
],
"organization": "University of California, Riverside"
}
],
"cve": "CVE-2021-20322",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"discovery_date": "2021-09-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2014230"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest threat from this vulnerability is to confidentiality and possibly integrity, because software that relies on UDP source port randomization are indirectly affected as well.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: new DNS Cache Poisoning Attack based on ICMP fragment needed packets replies",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having Moderate impact because of the attack scenario limitation. It is possible to harm the networking services only, but not for the overall system under attack, and impossible to get access to this remote system under attack.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-20322"
},
{
"category": "external",
"summary": "RHBZ#2014230",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2014230"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-20322",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20322"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15-rc6\u0026id=4785305c05b25a242e5314cc821f54ade4c18810",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15-rc6\u0026id=4785305c05b25a242e5314cc821f54ade4c18810"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15-rc6\u0026id=6457378fe796815c973f631a1904e147d6ee33b1",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.15-rc6\u0026id=6457378fe796815c973f631a1904e147d6ee33b1"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ipv4/route.c?h=v5.15-rc6\u0026id=67d6d681e15b578c1725bad8ad079e05d1c48a8e",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ipv4/route.c?h=v5.15-rc6\u0026id=67d6d681e15b578c1725bad8ad079e05d1c48a8e"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ipv6/route.c?h=v5.15-rc6\u0026id=a00df2caffed3883c341d5685f830434312e4a43",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/ipv6/route.c?h=v5.15-rc6\u0026id=a00df2caffed3883c341d5685f830434312e4a43"
}
],
"release_date": "2021-08-26T08:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: new DNS Cache Poisoning Attack based on ICMP fragment needed packets replies"
},
{
"acknowledgments": [
{
"names": [
"AMD"
]
}
],
"cve": "CVE-2021-26401",
"discovery_date": "2022-03-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2061700"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in hw. The speculative execution window of AMD LFENCE/JMP mitigation (MITIGATION V2-2) may be large enough to be exploited on AMD CPUs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-26401"
},
{
"category": "external",
"summary": "RHBZ#2061700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2061700"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-26401",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-26401"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-26401",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-26401"
},
{
"category": "external",
"summary": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1036",
"url": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1036"
}
],
"release_date": "2022-03-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "AMD recommends mitigation that uses generic retpoline.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715"
},
{
"cve": "CVE-2021-29154",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2021-04-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1946684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernels eBPF implementation. By default, accessing the eBPF verifier is only accessible to privileged users with CAP_SYS_ADMIN. A local user with the ability to insert eBPF instructions can abuse a flaw in eBPF to corrupt memory. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Local privilege escalation due to incorrect BPF JIT branch displacement computation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is rated as having Moderate impact as eBPF requires a privileged user on Red Hat Enterprise Linux to correctly load eBPF instructions that can be exploited.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-29154"
},
{
"category": "external",
"summary": "RHBZ#1946684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1946684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-29154",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29154"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-29154",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29154"
}
],
"release_date": "2021-04-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "This issue does not affect most systems by default. An administrator would need to have enabled the BPF JIT to be affected.\n\nIt can be disabled immediately with the command:\n\n# echo 0 \u003e /proc/sys/net/core/bpf_jit_enable\n\nOr it can be disabled for all subsequent boots of the system by setting a value in /etc/sysctl.d/44-bpf-jit-disable\n\n## start file ##\n\nnet.core.bpf_jit_enable=0\n\n## end file ##",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Local privilege escalation due to incorrect BPF JIT branch displacement computation"
},
{
"cve": "CVE-2021-37159",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2021-07-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1985353"
}
],
"notes": [
{
"category": "description",
"text": "A flaw use-after-free in the Linux kernel USB High Speed Mobile Devices functionality was found in the way user detaches USB device. A local user could use this flaw to crash the system or escalate their privileges on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free in hso_free_net_device() in drivers/net/usb/hso.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-37159"
},
{
"category": "external",
"summary": "RHBZ#1985353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1985353"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-37159",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37159"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-37159",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-37159"
},
{
"category": "external",
"summary": "https://www.spinics.net/lists/linux-usb/msg202228.html",
"url": "https://www.spinics.net/lists/linux-usb/msg202228.html"
}
],
"release_date": "2020-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module hso from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use-after-free in hso_free_net_device() in drivers/net/usb/hso.c"
},
{
"cve": "CVE-2021-41864",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-10-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2010463"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds (OOB) memory write flaw was found in prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the bpf in the Linux kernel. In this flaw, the multiplication to calculate the size could lead to an integer overflow which could allow a local attacker, with a special user privilege, to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: eBPF multiplication integer overflow in prealloc_elems_and_freelist() in kernel/bpf/stackmap.c leads to out-of-bounds write",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The default Red Hat Enterprise Linux kernel prevents unprivileged users from being able to use eBPF by the kernel.unprivileged_bpf_disabled sysctl. This would require a privileged user with CAP_SYS_ADMIN or root to be able to abuse this flaw reducing its attack space.\n\nFor the Red Hat Enterprise Linux 7 the eBPF for unprivileged users is always disabled.\nFor the Red Hat Enterprise Linux 8 to confirm the current state, inspect the sysctl with the command:\n~~~\n# cat /proc/sys/kernel/unprivileged_bpf_disabled\n~~~\nThe setting of 1 would mean that unprivileged users can not use eBPF, mitigating the flaw.\n\nA kernel update will be required to mitigate the flaw for the root or users with CAP_SYS_ADMIN capabilities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-41864"
},
{
"category": "external",
"summary": "RHBZ#2010463",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2010463"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-41864",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41864"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-41864",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41864"
},
{
"category": "external",
"summary": "https://github.com/torvalds/linux/commit/30e29a9a2bc6a4888335a6ede968b75cd329657a",
"url": "https://github.com/torvalds/linux/commit/30e29a9a2bc6a4888335a6ede968b75cd329657a"
}
],
"release_date": "2021-09-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: eBPF multiplication integer overflow in prealloc_elems_and_freelist() in kernel/bpf/stackmap.c leads to out-of-bounds write"
},
{
"cve": "CVE-2021-42739",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2021-04-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1951739"
}
],
"notes": [
{
"category": "description",
"text": "A heap-based buffer overflow flaw was found in the Linux kernel FireDTV media card driver, where the user calls the CA_SEND_MSG ioctl. This flaw allows a local user of the host machine to crash the system or escalate privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Heap buffer overflow in firedtv driver",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-42739"
},
{
"category": "external",
"summary": "RHBZ#1951739",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951739"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-42739",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42739"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-42739",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-42739"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-media/YHaulytonFcW+lyZ@mwanda/",
"url": "https://lore.kernel.org/linux-media/YHaulytonFcW+lyZ@mwanda/"
}
],
"release_date": "2021-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module firedtv from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Heap buffer overflow in firedtv driver"
},
{
"acknowledgments": [
{
"names": [
"Active Defense Lab"
],
"organization": "Venustech"
}
],
"cve": "CVE-2021-43389",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2021-10-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2013180"
}
],
"notes": [
{
"category": "description",
"text": "An improper validation of an array index and out of bounds memory read in the Linux kernel\u0027s Integrated Services Digital Network (ISDN) functionality was found in the way users call ioctl CMTPCONNADD. A local user could use this flaw to crash the system or starve the resources causing denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: an array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-43389"
},
{
"category": "external",
"summary": "RHBZ#2013180",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2013180"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-43389",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43389"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-43389",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43389"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1f3e2e97c003f80c4b087092b225c8787ff91e4d",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1f3e2e97c003f80c4b087092b225c8787ff91e4d"
},
{
"category": "external",
"summary": "https://lore.kernel.org/netdev/CAFcO6XOvGQrRTaTkaJ0p3zR7y7nrAWD79r48=L_BbOyrK9X-vA@mail.gmail.com/",
"url": "https://lore.kernel.org/netdev/CAFcO6XOvGQrRTaTkaJ0p3zR7y7nrAWD79r48=L_BbOyrK9X-vA@mail.gmail.com/"
}
],
"release_date": "2021-09-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module isdn from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: an array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c"
},
{
"cve": "CVE-2021-43976",
"cwe": {
"id": "CWE-459",
"name": "Incomplete Cleanup"
},
"discovery_date": "2021-11-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2025003"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw was found in mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c in the usb subsystem of the Linux kernel. This is due to a missing clean-up for a malfunctioning usb device with an unknown recv_type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: mwifiex_usb_recv() in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker to cause DoS via crafted USB device",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-43976"
},
{
"category": "external",
"summary": "RHBZ#2025003",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2025003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-43976",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43976"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-43976",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43976"
},
{
"category": "external",
"summary": "https://patchwork.kernel.org/project/linux-wireless/patch/YX4CqjfRcTa6bVL+@Zekuns-MBP-16.fios-router.home/",
"url": "https://patchwork.kernel.org/project/linux-wireless/patch/YX4CqjfRcTa6bVL+@Zekuns-MBP-16.fios-router.home/"
}
],
"release_date": "2021-10-31T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: mwifiex_usb_recv() in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker to cause DoS via crafted USB device"
},
{
"acknowledgments": [
{
"names": [
"Patrik Lantz"
],
"organization": "axis.com"
}
],
"cve": "CVE-2021-44733",
"cwe": {
"id": "CWE-908",
"name": "Use of Uninitialized Resource"
},
"discovery_date": "2021-12-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2030747"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw in the Linux kernel TEE (Trusted Execution Environment) subsystem was found in the way user calls ioctl TEE_IOC_OPEN_SESSION or TEE_IOC_INVOKE. A local user could use this flaw to crash the system or escalate their privileges on the system. If the Linux system non configured with the CONFIG_PREEMPT option or CONFIG_CPU_SW_DOMAIN_PAN option enabled, then it is unlikely that a user can trigger this issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free in the TEE subsystem",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-44733"
},
{
"category": "external",
"summary": "RHBZ#2030747",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2030747"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-44733",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44733"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-44733",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44733"
},
{
"category": "external",
"summary": "https://lore.kernel.org/lkml/20211214123540.1789434-1-jens.wiklander@linaro.org/",
"url": "https://lore.kernel.org/lkml/20211214123540.1789434-1-jens.wiklander@linaro.org/"
}
],
"release_date": "2021-12-14T12:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the modules tee, trusted_tee from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use-after-free in the TEE subsystem"
},
{
"cve": "CVE-2021-45485",
"cwe": {
"id": "CWE-327",
"name": "Use of a Broken or Risky Cryptographic Algorithm"
},
"discovery_date": "2021-12-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2039911"
}
],
"notes": [
{
"category": "description",
"text": "An information leak flaw was found in the Linux kernel\u2019s IPv6 implementation in the __ipv6_select_ident in net/ipv6/output_core.c function. The use of a small hash table in IP ID generation allows a remote attacker to reveal sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: information leak in the IPv6 implementation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-45485"
},
{
"category": "external",
"summary": "RHBZ#2039911",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2039911"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-45485",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45485"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-45485",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-45485"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=62f20e068ccc50d6ab66fdb72ba90da2b9418c99",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=62f20e068ccc50d6ab66fdb72ba90da2b9418c99"
},
{
"category": "external",
"summary": "https://lore.kernel.org/all/20210529110746.6796-1-w@1wt.eu/",
"url": "https://lore.kernel.org/all/20210529110746.6796-1-w@1wt.eu/"
}
],
"release_date": "2021-05-31T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: information leak in the IPv6 implementation"
},
{
"cve": "CVE-2021-45486",
"cwe": {
"id": "CWE-497",
"name": "Exposure of Sensitive System Information to an Unauthorized Control Sphere"
},
"discovery_date": "2021-12-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2039914"
}
],
"notes": [
{
"category": "description",
"text": "An information leak flaw was found in the Linux kernel\u2019s IPv4 implementation in the ip_rt_init in net/ipv4/route.c function. The use of a small hash table in IP ID generation allows a remote attacker to reveal sensitive information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: information leak in the IPv4 implementation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-45486"
},
{
"category": "external",
"summary": "RHBZ#2039914",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2039914"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-45486",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45486"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-45486",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-45486"
},
{
"category": "external",
"summary": "https://arxiv.org/pdf/2112.09604.pdf",
"url": "https://arxiv.org/pdf/2112.09604.pdf"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/net/ipv4/route.c?id=aa6dd211e4b1dde9d5dc25d699d35f789ae7eeba",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/net/ipv4/route.c?id=aa6dd211e4b1dde9d5dc25d699d35f789ae7eeba"
}
],
"release_date": "2021-03-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: information leak in the IPv4 implementation"
},
{
"cve": "CVE-2021-47435",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2024-05-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2282879"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndm: fix mempool NULL pointer race when completing IO\n\ndm_io_dec_pending() calls end_io_acct() first and will then dec md\nin-flight pending count. But if a task is swapping DM table at same\ntime this can result in a crash due to mempool-\u003eelements being NULL:\n\ntask1 task2\ndo_resume\n -\u003edo_suspend\n -\u003edm_wait_for_completion\n bio_endio\n\t\t\t\t -\u003eclone_endio\n\t\t\t\t -\u003edm_io_dec_pending\n\t\t\t\t -\u003eend_io_acct\n\t\t\t\t -\u003ewakeup task1\n -\u003edm_swap_table\n -\u003e__bind\n -\u003e__bind_mempools\n -\u003ebioset_exit\n -\u003emempool_exit\n -\u003efree_io\n\n[ 67.330330] Unable to handle kernel NULL pointer dereference at\nvirtual address 0000000000000000\n......\n[ 67.330494] pstate: 80400085 (Nzcv daIf +PAN -UAO)\n[ 67.330510] pc : mempool_free+0x70/0xa0\n[ 67.330515] lr : mempool_free+0x4c/0xa0\n[ 67.330520] sp : ffffff8008013b20\n[ 67.330524] x29: ffffff8008013b20 x28: 0000000000000004\n[ 67.330530] x27: ffffffa8c2ff40a0 x26: 00000000ffff1cc8\n[ 67.330535] x25: 0000000000000000 x24: ffffffdada34c800\n[ 67.330541] x23: 0000000000000000 x22: ffffffdada34c800\n[ 67.330547] x21: 00000000ffff1cc8 x20: ffffffd9a1304d80\n[ 67.330552] x19: ffffffdada34c970 x18: 000000b312625d9c\n[ 67.330558] x17: 00000000002dcfbf x16: 00000000000006dd\n[ 67.330563] x15: 000000000093b41e x14: 0000000000000010\n[ 67.330569] x13: 0000000000007f7a x12: 0000000034155555\n[ 67.330574] x11: 0000000000000001 x10: 0000000000000001\n[ 67.330579] x9 : 0000000000000000 x8 : 0000000000000000\n[ 67.330585] x7 : 0000000000000000 x6 : ffffff80148b5c1a\n[ 67.330590] x5 : ffffff8008013ae0 x4 : 0000000000000001\n[ 67.330596] x3 : ffffff80080139c8 x2 : ffffff801083bab8\n[ 67.330601] x1 : 0000000000000000 x0 : ffffffdada34c970\n[ 67.330609] Call trace:\n[ 67.330616] mempool_free+0x70/0xa0\n[ 67.330627] bio_put+0xf8/0x110\n[ 67.330638] dec_pending+0x13c/0x230\n[ 67.330644] clone_endio+0x90/0x180\n[ 67.330649] bio_endio+0x198/0x1b8\n[ 67.330655] dec_pending+0x190/0x230\n[ 67.330660] clone_endio+0x90/0x180\n[ 67.330665] bio_endio+0x198/0x1b8\n[ 67.330673] blk_update_request+0x214/0x428\n[ 67.330683] scsi_end_request+0x2c/0x300\n[ 67.330688] scsi_io_completion+0xa0/0x710\n[ 67.330695] scsi_finish_command+0xd8/0x110\n[ 67.330700] scsi_softirq_done+0x114/0x148\n[ 67.330708] blk_done_softirq+0x74/0xd0\n[ 67.330716] __do_softirq+0x18c/0x374\n[ 67.330724] irq_exit+0xb4/0xb8\n[ 67.330732] __handle_domain_irq+0x84/0xc0\n[ 67.330737] gic_handle_irq+0x148/0x1b0\n[ 67.330744] el1_irq+0xe8/0x190\n[ 67.330753] lpm_cpuidle_enter+0x4f8/0x538\n[ 67.330759] cpuidle_enter_state+0x1fc/0x398\n[ 67.330764] cpuidle_enter+0x18/0x20\n[ 67.330772] do_idle+0x1b4/0x290\n[ 67.330778] cpu_startup_entry+0x20/0x28\n[ 67.330786] secondary_start_kernel+0x160/0x170\n\nFix this by:\n1) Establishing pointers to \u0027struct dm_io\u0027 members in\ndm_io_dec_pending() so that they may be passed into end_io_acct()\n_after_ free_io() is called.\n2) Moving end_io_acct() after free_io().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: dm: fix mempool NULL pointer race when completing IO",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-47435"
},
{
"category": "external",
"summary": "RHBZ#2282879",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282879"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-47435",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47435"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-47435",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47435"
}
],
"release_date": "2024-05-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: dm: fix mempool NULL pointer race when completing IO"
},
{
"cve": "CVE-2021-47544",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2024-05-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2283406"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Linux kernel\u0027s TCP subsystem in the tcp_sendmsg_locked() function, which can lead to page fragment corruption during a page fault, which occurs when a TCP stream experiences nested access to the task page fragment due to a page fault while handling memory-mapped user-space data from a CIFS mount.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: tcp: fix page frag corruption on page fault",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-47544"
},
{
"category": "external",
"summary": "RHBZ#2283406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283406"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-47544",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47544"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-47544",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47544"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2024052440-CVE-2021-47544-ceb5@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2024052440-CVE-2021-47544-ceb5@gregkh/T"
}
],
"release_date": "2024-05-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: tcp: fix page frag corruption on page fault"
},
{
"cve": "CVE-2021-47556",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2024-05-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2283393"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Linux kernel\u0027s ethtool implementation in the ioctl handling of coalesce settings, where the system attempts to change coalesce settings using the ethtool_set_coalesce() function without verifying the availability of both the .get_coalesce() and .set_coalesce() callbacks, leading to a potential NULL pointer dereference causing system instability and crashes during network operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: ethtool: ioctl: fix potential NULL deref in ethtool_set_coalesce()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-47556"
},
{
"category": "external",
"summary": "RHBZ#2283393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283393"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-47556",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47556"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-47556",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47556"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2024052443-CVE-2021-47556-558e@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2024052443-CVE-2021-47556-558e@gregkh/T"
}
],
"release_date": "2024-05-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: ethtool: ioctl: fix potential NULL deref in ethtool_set_coalesce()"
},
{
"cve": "CVE-2021-47590",
"cwe": {
"id": "CWE-833",
"name": "Deadlock"
},
"discovery_date": "2024-06-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293237"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Linux kernel\u0027s mptcp component in the __mptcp_push_pending() function, where a deadlock can occur when calling mptcp_flush_join_list() with the subflow socket lock held. This happens if the synchronization function mptcp_sockopt_sync_all() is invoked, causing the system to hang due to competing locks, this vulnerability can lead to significant disruptions in MultiPath TCP operations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: mptcp: fix deadlock in __mptcp_push_pending()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-47590"
},
{
"category": "external",
"summary": "RHBZ#2293237",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293237"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-47590",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-47590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47590"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2024061919-CVE-2021-47590-6db0@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2024061919-CVE-2021-47590-6db0@gregkh/T"
}
],
"release_date": "2024-06-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: mptcp: fix deadlock in __mptcp_push_pending()"
},
{
"cve": "CVE-2021-47614",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2024-06-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293265"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Linux kernel\u0027s RDMA/irdma driver. Improper memory management in the add_pble_prm function fails to manage memory correctly, resulting in a user-after-free condition that can lead to exploitation. This flaw allows an attacker to manipulate memory access potentially, resulting in data corruption or system crashes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: RDMA/irdma: Fix a user-after-free in add_pble_prm",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-47614"
},
{
"category": "external",
"summary": "RHBZ#2293265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-47614",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47614"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-47614",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47614"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2024061908-CVE-2021-47614-6dd2@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2024061908-CVE-2021-47614-6dd2@gregkh/T"
}
],
"release_date": "2024-06-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: RDMA/irdma: Fix a user-after-free in add_pble_prm"
},
{
"acknowledgments": [
{
"names": [
"Intel"
]
}
],
"cve": "CVE-2022-0001",
"discovery_date": "2022-03-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2061712"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in hw. The Branch History Injection (BHI) describes a specific form of intra-mode BTI. This flaw allows an unprivileged attacker to manipulate the branch history before transitioning to supervisor or VMX root mode. This issue is an effort to cause an indirect branch predictor to select a specific predictor entry for an indirect branch, and a disclosure gadget at the predicted target will transiently execute. This execution is possible since the relevant branch history may contain branches taken in previous security contexts, and in particular, in other predictor modes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: intel: Branch History Injection (BHI)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The current known mechanisms to exploit this issue rely on unprivileged eBPF functionality. Unprivileged eBPF is disabled by default on Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0001"
},
{
"category": "external",
"summary": "RHBZ#2061712",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2061712"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0001",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0001"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0001",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0001"
},
{
"category": "external",
"summary": "https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/technical-documentation/branch-history-injection.html",
"url": "https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/technical-documentation/branch-history-injection.html"
},
{
"category": "external",
"summary": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html"
},
{
"category": "external",
"summary": "https://www.vusec.net/projects/bhi-spectre-bhb/",
"url": "https://www.vusec.net/projects/bhi-spectre-bhb/"
}
],
"release_date": "2022-03-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Disabling unprivileged eBPF effectively mitigates the known attack vectors for exploiting intra-mode branch injections attacks.\n\nThe default Red Hat Enterprise Linux kernel prevents unprivileged users from being able to use eBPF by the kernel.unprivileged_bpf_disabled sysctl.\n\nFor the Red Hat Enterprise Linux 7, the eBPF for unprivileged users is always disabled.\n\nFor the Red Hat Enterprise Linux 8 to confirm the current state, inspect the sysctl with the command:\n\n# cat /proc/sys/kernel/unprivileged_bpf_disabled\n\nThe setting of 1 would mean that unprivileged users can not use eBPF, mitigating the flaw.\n\nContinue to enable SMEP and Enhanced IBRS. This is the default setting on eligible CPUs.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "hw: cpu: intel: Branch History Injection (BHI)"
},
{
"acknowledgments": [
{
"names": [
"Intel"
]
}
],
"cve": "CVE-2022-0002",
"discovery_date": "2022-03-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2061721"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in hw. The Intra-mode BTI refers to a variant of Branch Target Injection aka SpectreV2 (BTI) where an indirect branch speculates to an aliased predictor entry for a different indirect branch in the same predictor mode, and a disclosure gadget at the predicted target transiently executes. These predictor entries may contain targets corresponding to the targets of an indirect near jump, indirect near call, and near return instructions, even if these branches were only transiently executed. The managed runtimes provide an attacker with the means to create the aliasing required for intra-mode BTI attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: intel: Intra-Mode BTI",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The current known mechanisms to exploit this issue rely on unprivileged eBPF functionality. Unprivileged eBPF is disabled by default on Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0002"
},
{
"category": "external",
"summary": "RHBZ#2061721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2061721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0002",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0002"
},
{
"category": "external",
"summary": "https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/technical-documentation/branch-history-injection.html",
"url": "https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/technical-documentation/branch-history-injection.html"
},
{
"category": "external",
"summary": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html",
"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00598.html"
},
{
"category": "external",
"summary": "https://www.vusec.net/projects/bhi-spectre-bhb/",
"url": "https://www.vusec.net/projects/bhi-spectre-bhb/"
}
],
"release_date": "2022-03-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Disabling unprivileged eBPF effectively mitigates the known attack vectors for exploiting intra-mode branch injections attacks.\n\nThe default Red Hat Enterprise Linux kernel prevents unprivileged users from being able to use eBPF by the kernel.unprivileged_bpf_disabled sysctl.\n\nFor the Red Hat Enterprise Linux 7 the eBPF for unprivileged users is always disabled.\n\nFor the Red Hat Enterprise Linux 8 to confirm the current state, inspect the sysctl with the command:\n\n# cat /proc/sys/kernel/unprivileged_bpf_disabled\n\nThe setting of 1 would mean that unprivileged users can not use eBPF, mitigating the flaw.\n\nContinue to enable SMEP and Enhanced IBRS. This is the default setting on eligible CPUs.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "hw: cpu: intel: Intra-Mode BTI"
},
{
"acknowledgments": [
{
"names": [
"De4dCr0w"
],
"organization": "360 Vulnerability Research Institute"
}
],
"cve": "CVE-2022-0286",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-01-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2037019"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the Linux kernel\u2019s bonding driver in the way a user bonds non existing or fake device. This flaw allows a local user to crash the system, causing a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Local denial of service in bond_ipsec_add_sa",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0286"
},
{
"category": "external",
"summary": "RHBZ#2037019",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037019"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0286"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0286",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0286"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=105cd17a866017b45f3c45901b394c711c97bf40",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=105cd17a866017b45f3c45901b394c711c97bf40"
}
],
"release_date": "2021-07-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module bonding from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: Local denial of service in bond_ipsec_add_sa"
},
{
"cve": "CVE-2022-0322",
"cwe": {
"id": "CWE-681",
"name": "Incorrect Conversion between Numeric Types"
},
"discovery_date": "2021-12-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2042822"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw, an attempt to use more buffer than is allocated triggers a BUG_ON issue, leading to a denial of service (DOS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: DoS in sctp_addto_chunk in net/sctp/sm_make_chunk.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0322"
},
{
"category": "external",
"summary": "RHBZ#2042822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2042822"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0322",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0322"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a2d859e3fc97e79d907761550dbc03ff1b36479c",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a2d859e3fc97e79d907761550dbc03ff1b36479c"
}
],
"release_date": "2021-10-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is to skip loading the affected module SCTP onto the system. Until we have a fix available, this can be done by a blacklist mechanism and will ensure the driver is not loaded at the boot time.\n~~~\nHow do I blacklist a kernel module to prevent it from loading automatically?\nhttps://access.redhat.com/solutions/41278 \n~~~",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: DoS in sctp_addto_chunk in net/sctp/sm_make_chunk.c"
},
{
"acknowledgments": [
{
"names": [
"elijahbai"
],
"organization": "Tencent Security Yunding Lab"
}
],
"cve": "CVE-2022-0850",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2021-11-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2060606"
}
],
"notes": [
{
"category": "description",
"text": "An information leak flaw was found via ext4_extent_header in fs/ext4/extents.c in the Linux kernel. This flaw could allow a local attacker to cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: information leak in copy_page_to_iter() in iov_iter.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0850"
},
{
"category": "external",
"summary": "RHBZ#2060606",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2060606"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0850",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0850"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0850",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0850"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ce3aba43599f0b50adbebff133df8d08a3d5fffe",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ce3aba43599f0b50adbebff133df8d08a3d5fffe"
},
{
"category": "external",
"summary": "https://syzkaller.appspot.com/bug?id=78e9ad0e6952a3ca16e8234724b2fa92d041b9b8",
"url": "https://syzkaller.appspot.com/bug?id=78e9ad0e6952a3ca16e8234724b2fa92d041b9b8"
}
],
"release_date": "2021-05-06T19:30:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: information leak in copy_page_to_iter() in iov_iter.c"
},
{
"acknowledgments": [
{
"names": [
"Miklos Szeredi",
"Jann Horn"
]
}
],
"cve": "CVE-2022-1011",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2022-03-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2064855"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw was found in the Linux kernel\u2019s FUSE filesystem in the way a user triggers write(). This flaw allows a local user to gain unauthorized access to data from the FUSE filesystem, resulting in privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: FUSE allows UAF reads of write() buffers, allowing theft of (partial) /etc/shadow hashes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For the Red Hat Enterprise Linux the issue actual if fuse or fuse3 package is installed on the system and only privileged user can install it.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-1011"
},
{
"category": "external",
"summary": "RHBZ#2064855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2064855"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-1011",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1011"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1011",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1011"
},
{
"category": "external",
"summary": "https://lore.kernel.org/lkml/20220414110839.241541230@linuxfoundation.org/",
"url": "https://lore.kernel.org/lkml/20220414110839.241541230@linuxfoundation.org/"
}
],
"release_date": "2022-03-07T10:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: FUSE allows UAF reads of write() buffers, allowing theft of (partial) /etc/shadow hashes"
},
{
"acknowledgments": [
{
"names": [
"Jiasheng Jiang"
]
}
],
"cve": "CVE-2022-3105",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-12-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2153067"
}
],
"notes": [
{
"category": "description",
"text": "An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: RDMA/uverbs: NULL pointer dereference in uapi_finalize()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-3105"
},
{
"category": "external",
"summary": "RHBZ#2153067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2153067"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-3105",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3105"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-3105",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3105"
}
],
"release_date": "2022-12-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: RDMA/uverbs: NULL pointer dereference in uapi_finalize()"
},
{
"acknowledgments": [
{
"names": [
"Jiasheng Jiang"
]
}
],
"cve": "CVE-2022-3106",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-12-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2153066"
}
],
"notes": [
{
"category": "description",
"text": "An issue was discovered in the Linux kernel through 5.16-rc6. ef100_update_stats in drivers/net/ethernet/sfc/ef100_nic.c lacks check of the return value of kmalloc().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: sfc_ef100: NULL pointer dereference in ef100_update_stats()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-3106"
},
{
"category": "external",
"summary": "RHBZ#2153066",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2153066"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-3106",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3106"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-3106",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3106"
}
],
"release_date": "2022-12-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: sfc_ef100: NULL pointer dereference in ef100_update_stats()"
},
{
"acknowledgments": [
{
"names": [
"Jiasheng Jiang"
]
}
],
"cve": "CVE-2022-3108",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-12-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2153052"
}
],
"notes": [
{
"category": "description",
"text": "An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers/gpu/drm/amd/amdkfd/kfd_crat.c lacks check of the return value of kmemdup().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: drm/amdkfd: NULL pointer dereference in kfd_parse_subtype_iolink()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-3108"
},
{
"category": "external",
"summary": "RHBZ#2153052",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2153052"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-3108",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3108"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-3108",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3108"
}
],
"release_date": "2022-12-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: drm/amdkfd: NULL pointer dereference in kfd_parse_subtype_iolink()"
},
{
"cve": "CVE-2023-0459",
"cwe": {
"id": "CWE-402",
"name": "Transmission of Private Resources into a New Sphere (\u0027Resource Leak\u0027)"
},
"discovery_date": "2023-06-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2216383"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in copy_from_user in 64-bit versions of the Linux kernel. This flaw allows a local attacker to bypass the \"access_ok\" sanity check and pass a kernel pointer to copy_from_user(), resulting in kernel data leaking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: Copy_from_user on 64-bit versions may leak kernel information",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-0459"
},
{
"category": "external",
"summary": "RHBZ#2216383",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216383"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-0459",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0459"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-0459",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0459"
},
{
"category": "external",
"summary": "https://github.com/torvalds/linux/commit/4b842e4e25b12951fa10dedb4bc16bc47e3b850c",
"url": "https://github.com/torvalds/linux/commit/4b842e4e25b12951fa10dedb4bc16bc47e3b850c"
}
],
"release_date": "2020-02-15T06:30:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: Copy_from_user on 64-bit versions may leak kernel information"
},
{
"cve": "CVE-2023-3022",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"discovery_date": "2023-03-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2211440"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the IPv6 module of the Linux kernel. The arg.result was not used consistently in fib6_rule_lookup, sometimes holding rt6_info and other times fib6_info. This was not accounted for in other parts of the code where rt6_info was expected unconditionally, potentially leading to a kernel panic in fib6_rule_suppress.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: IPv6: panic in fib6_rule_suppress when fib6_rule_lookup fails",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-3022"
},
{
"category": "external",
"summary": "RHBZ#2211440",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2211440"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-3022",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3022"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-3022",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3022"
}
],
"release_date": "2019-04-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-05-10T13:43:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:1975"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"NFV-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"NFV-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.src",
"RT-8.6.0.GA:kernel-rt-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-core-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-devel-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-kvm-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-0:4.18.0-372.9.1.rt7.166.el8.x86_64",
"RT-8.6.0.GA:kernel-rt-modules-extra-0:4.18.0-372.9.1.rt7.166.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: IPv6: panic in fib6_rule_suppress when fib6_rule_lookup fails"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…