Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-0168 (GCVE-0-2022-0168)
Vulnerability from cvelistv5 – Published: 2022-08-26 17:25 – Updated: 2024-08-02 23:18
VLAI
EPSS
Summary
A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.
Severity
No CVSS data available.
CWE
- CWE-476 - - NULL Pointer Dereference
Assigner
References
3 references
| URL | Tags |
|---|---|
| https://bugzilla.redhat.com/show_bug.cgi?id=2037386 | x_refsource_MISC |
| https://access.redhat.com/security/cve/CVE-2022-0168 | x_refsource_MISC |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | x_refsource_MISC |
Impacted products
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T23:18:41.954Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/CVE-2022-0168"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "kernel",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Affects v5.4\u20135.12, v5.13-rc+HEAD"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-476",
"description": "CWE-476 - NULL Pointer Dereference",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-08-26T17:25:46.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://access.redhat.com/security/cve/CVE-2022-0168"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2022-0168",
"datePublished": "2022-08-26T17:25:46.000Z",
"dateReserved": "2022-01-10T00:00:00.000Z",
"dateUpdated": "2024-08-02T23:18:41.954Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-0168",
"date": "2026-05-30",
"epss": "0.00018",
"percentile": "0.04982"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.18\", \"matchCriteriaId\": \"FE93544F-B946-47CF-9697-FBF3484FCB92\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4CFF558-3C47-480D-A2F0-BABF26042943\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A denial of service (DOS) issue was found in the Linux kernel\\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.\"}, {\"lang\": \"es\", \"value\": \"Se encontr\\u00f3 un problema de denegaci\\u00f3n de servicio (DOS) en la funci\\u00f3n smb2_ioctl_query_info del kernel de Linux en el archivo fs/cifs/smb2ops.c Common Internet File System (CIFS) debido a un retorno incorrecto de la funci\\u00f3n memdup_user. Este fallo permite a un atacante local privilegiado (CAP_SYS_ADMIN) bloquear el sistema.\"}]",
"id": "CVE-2022-0168",
"lastModified": "2024-11-21T06:38:03.603",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 4.4, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 0.8, \"impactScore\": 3.6}]}",
"published": "2022-08-26T18:15:08.550",
"references": "[{\"url\": \"https://access.redhat.com/security/cve/CVE-2022-0168\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2037386\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2022-0168\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2037386\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-476\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-476\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-0168\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2022-08-26T18:15:08.550\",\"lastModified\":\"2024-11-21T06:38:03.603\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 un problema de denegaci\u00f3n de servicio (DOS) en la funci\u00f3n smb2_ioctl_query_info del kernel de Linux en el archivo fs/cifs/smb2ops.c Common Internet File System (CIFS) debido a un retorno incorrecto de la funci\u00f3n memdup_user. Este fallo permite a un atacante local privilegiado (CAP_SYS_ADMIN) bloquear el sistema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":4.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-476\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-476\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.18\",\"matchCriteriaId\":\"FE93544F-B946-47CF-9697-FBF3484FCB92\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/security/cve/CVE-2022-0168\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2037386\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/security/cve/CVE-2022-0168\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2037386\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]}]}}"
}
}
CERTFR-2023-AVI-0726
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à l'intégrité des données et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Ubuntu 16.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 18.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 20.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 23.04",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 14.04 ESM",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
},
{
"description": "Ubuntu 22.04 LTS",
"product": {
"name": "Ubuntu",
"vendor": {
"name": "Ubuntu",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2022-28733",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28733"
},
{
"name": "CVE-2023-28466",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28466"
},
{
"name": "CVE-2023-30772",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30772"
},
{
"name": "CVE-2021-3695",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3695"
},
{
"name": "CVE-2023-2235",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2235"
},
{
"name": "CVE-2023-21400",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21400"
},
{
"name": "CVE-2022-48502",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48502"
},
{
"name": "CVE-2022-28735",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28735"
},
{
"name": "CVE-2023-3390",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3390"
},
{
"name": "CVE-2023-4004",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4004"
},
{
"name": "CVE-2023-2002",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2002"
},
{
"name": "CVE-2022-28734",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28734"
},
{
"name": "CVE-2022-4269",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4269"
},
{
"name": "CVE-2023-3159",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3159"
},
{
"name": "CVE-2023-2985",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2985"
},
{
"name": "CVE-2023-40283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40283"
},
{
"name": "CVE-2023-35788",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35788"
},
{
"name": "CVE-2023-2163",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2163"
},
{
"name": "CVE-2023-3777",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3777"
},
{
"name": "CVE-2022-0168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0168"
},
{
"name": "CVE-2023-1855",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1855"
},
{
"name": "CVE-2023-31248",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31248"
},
{
"name": "CVE-2023-35828",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35828"
},
{
"name": "CVE-2022-28736",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28736"
},
{
"name": "CVE-2023-3995",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3995"
},
{
"name": "CVE-2023-31084",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31084"
},
{
"name": "CVE-2023-3090",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3090"
},
{
"name": "CVE-2023-3611",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3611"
},
{
"name": "CVE-2023-4128",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4128"
},
{
"name": "CVE-2023-2194",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2194"
},
{
"name": "CVE-2023-33203",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33203"
},
{
"name": "CVE-2023-3111",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3111"
},
{
"name": "CVE-2023-32252",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32252"
},
{
"name": "CVE-2023-20593",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-20593"
},
{
"name": "CVE-2023-32629",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32629"
},
{
"name": "CVE-2023-32257",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32257"
},
{
"name": "CVE-2022-1184",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1184"
},
{
"name": "CVE-2022-28737",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28737"
},
{
"name": "CVE-2022-48425",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48425"
},
{
"name": "CVE-2023-33288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33288"
},
{
"name": "CVE-2023-21255",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21255"
},
{
"name": "CVE-2023-1990",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1990"
},
{
"name": "CVE-2023-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3567"
},
{
"name": "CVE-2023-35824",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35824"
},
{
"name": "CVE-2022-40982",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40982"
},
{
"name": "CVE-2023-3609",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3609"
},
{
"name": "CVE-2023-32258",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32258"
},
{
"name": "CVE-2023-4155",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4155"
},
{
"name": "CVE-2023-35823",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35823"
},
{
"name": "CVE-2021-3697",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3697"
},
{
"name": "CVE-2023-3776",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3776"
},
{
"name": "CVE-2023-4194",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4194"
},
{
"name": "CVE-2022-27672",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27672"
},
{
"name": "CVE-2023-2269",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2269"
},
{
"name": "CVE-2023-2898",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2898"
},
{
"name": "CVE-2020-36691",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36691"
},
{
"name": "CVE-2023-38428",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38428"
},
{
"name": "CVE-2023-32247",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32247"
},
{
"name": "CVE-2021-3696",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3696"
},
{
"name": "CVE-2023-32248",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32248"
},
{
"name": "CVE-2023-3141",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3141"
},
{
"name": "CVE-2023-3610",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3610"
},
{
"name": "CVE-2023-0458",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0458"
},
{
"name": "CVE-2023-4015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4015"
},
{
"name": "CVE-2023-3212",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3212"
},
{
"name": "CVE-2023-4273",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4273"
},
{
"name": "CVE-2023-35001",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35001"
},
{
"name": "CVE-2023-23004",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23004"
},
{
"name": "CVE-2023-35829",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35829"
},
{
"name": "CVE-2021-3981",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3981"
},
{
"name": "CVE-2023-0597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0597"
},
{
"name": "CVE-2023-38426",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38426"
},
{
"name": "CVE-2022-3775",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3775"
},
{
"name": "CVE-2023-1206",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1206"
},
{
"name": "CVE-2023-0590",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0590"
},
{
"name": "CVE-2023-1611",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1611"
},
{
"name": "CVE-2023-3268",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3268"
},
{
"name": "CVE-2023-34319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34319"
},
{
"name": "CVE-2023-38429",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38429"
},
{
"name": "CVE-2023-2124",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2124"
},
{
"name": "CVE-2023-32250",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32250"
},
{
"name": "CVE-2023-3389",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3389"
}
],
"links": [],
"reference": "CERTFR-2023-AVI-0726",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-09-08T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux d\u0027Ubuntu\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6337-1 du 04 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6337-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6355-1 du 08 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6355-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6346-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6346-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6344-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6344-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6343-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6343-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6338-1 du 05 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6338-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu LSN-0097-1 du 05 septembre 2023",
"url": "https://ubuntu.com/security/notices/LSN-0097-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6348-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6348-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6342-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6342-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6350-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6350-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6339-1 du 05 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6339-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6351-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6351-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6340-1 du 05 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6340-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6349-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6349-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6341-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6341-1"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-6347-1 du 06 septembre 2023",
"url": "https://ubuntu.com/security/notices/USN-6347-1"
}
]
}
CERTFR-2024-AVI-0115
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de RedHat. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire et un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux Server | Red Hat Enterprise Linux Server - AUS 8.6 x86_64 | ||
| Red Hat | Red Hat Enterprise Linux Server | Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux for Real Time for x86_64 - 4 years of updates 9.2 x86_64 | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64 | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le | ||
| Red Hat | Red Hat Enterprise Linux Server | Red Hat Enterprise Linux Server - TUS 8.6 x86_64 | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x | ||
| Red Hat | Red Hat CodeReady Linux Builder | Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.6 aarch64 | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux for Real Time for NFV for x86_64 - 4 years of updates 9.2 x86_64 | ||
| Red Hat | Red Hat CodeReady Linux Builder | Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.6 x86_64 | ||
| Oracle | Virtualization | Red Hat Virtualization Host 4 for RHEL 8 x86_64 | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64 | ||
| Red Hat | Red Hat CodeReady Linux Builder | Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.6 ppc64le | ||
| Red Hat | Red Hat Enterprise Linux | Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Red Hat Enterprise Linux Server - AUS 8.6 x86_64",
"product": {
"name": "Red Hat Enterprise Linux Server",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le",
"product": {
"name": "Red Hat Enterprise Linux Server",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux for Real Time for x86_64 - 4 years of updates 9.2 x86_64",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux Server - TUS 8.6 x86_64",
"product": {
"name": "Red Hat Enterprise Linux Server",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 8.6 aarch64",
"product": {
"name": "Red Hat CodeReady Linux Builder",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux for Real Time for NFV for x86_64 - 4 years of updates 9.2 x86_64",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 8.6 x86_64",
"product": {
"name": "Red Hat CodeReady Linux Builder",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Virtualization Host 4 for RHEL 8 x86_64",
"product": {
"name": "Virtualization",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 8.6 ppc64le",
"product": {
"name": "Red Hat CodeReady Linux Builder",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
},
{
"description": "Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64",
"product": {
"name": "Red Hat Enterprise Linux",
"vendor": {
"name": "Red Hat",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2022-3707",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3707"
},
{
"name": "CVE-2023-46813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46813"
},
{
"name": "CVE-2023-28328",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28328"
},
{
"name": "CVE-2023-6536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6536"
},
{
"name": "CVE-2021-30002",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30002"
},
{
"name": "CVE-2023-23455",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23455"
},
{
"name": "CVE-2024-0646",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0646"
},
{
"name": "CVE-2023-40283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40283"
},
{
"name": "CVE-2022-39189",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39189"
},
{
"name": "CVE-2022-0168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0168"
},
{
"name": "CVE-2023-45862",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45862"
},
{
"name": "CVE-2023-1989",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1989"
},
{
"name": "CVE-2023-20569",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-20569"
},
{
"name": "CVE-2023-6817",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6817"
},
{
"name": "CVE-2023-1074",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1074"
},
{
"name": "CVE-2023-4921",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4921"
},
{
"name": "CVE-2022-21499",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21499"
},
{
"name": "CVE-2022-1462",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1462"
},
{
"name": "CVE-2023-6356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6356"
},
{
"name": "CVE-2022-2078",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2078"
},
{
"name": "CVE-2023-1252",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1252"
},
{
"name": "CVE-2022-2663",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2663"
},
{
"name": "CVE-2022-2586",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2586"
},
{
"name": "CVE-2022-28893",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28893"
},
{
"name": "CVE-2022-3545",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3545"
},
{
"name": "CVE-2023-2176",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2176"
},
{
"name": "CVE-2022-3524",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3524"
},
{
"name": "CVE-2023-28772",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28772"
},
{
"name": "CVE-2023-1075",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1075"
},
{
"name": "CVE-2021-3640",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3640"
},
{
"name": "CVE-2022-45887",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45887"
},
{
"name": "CVE-2023-6535",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6535"
},
{
"name": "CVE-2022-0500",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0500"
},
{
"name": "CVE-2022-3594",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3594"
},
{
"name": "CVE-2022-36946",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36946"
},
{
"name": "CVE-2022-24448",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24448"
},
{
"name": "CVE-2022-3619",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3619"
},
{
"name": "CVE-2023-35825",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35825"
},
{
"name": "CVE-2022-25265",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25265"
},
{
"name": "CVE-2023-3141",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3141"
},
{
"name": "CVE-2021-4204",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4204"
},
{
"name": "CVE-2022-28388",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28388"
},
{
"name": "CVE-2023-6606",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6606"
},
{
"name": "CVE-2022-3623",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3623"
},
{
"name": "CVE-2023-6932",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6932"
},
{
"name": "CVE-2023-0458",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0458"
},
{
"name": "CVE-2022-0617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0617"
},
{
"name": "CVE-2021-34866",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34866"
},
{
"name": "CVE-2023-7192",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7192"
},
{
"name": "CVE-2023-4132",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4132"
},
{
"name": "CVE-2022-3566",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3566"
},
{
"name": "CVE-2022-28390",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28390"
},
{
"name": "CVE-2023-5717",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5717"
},
{
"name": "CVE-2022-23222",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23222"
},
{
"name": "CVE-2023-2166",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2166"
},
{
"name": "CVE-2023-6610",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6610"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0115",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-02-09T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de RedHat\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non\nsp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code arbitraire et un d\u00e9ni de\nservice \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de RedHat",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2024:0724 du 07 f\u00e9vrier 2024",
"url": "https://access.redhat.com/errata/RHSA-2024:0724"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2024:0725 du 07 f\u00e9vrier 2024",
"url": "https://access.redhat.com/errata/RHSA-2024:0725"
}
]
}
CERTFR-2025-AVI-0252
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Manager Proxy 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.3 | ||
| SUSE | N/A | openSUSE Leap 15.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 11 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | SUSE Manager Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 11 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2022-1184",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1184"
},
{
"name": "CVE-2022-1048",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1048"
},
{
"name": "CVE-2022-0168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0168"
},
{
"name": "CVE-2022-3435",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3435"
},
{
"name": "CVE-2022-29901",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29901"
},
{
"name": "CVE-2022-29900",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29900"
},
{
"name": "CVE-2022-2977",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2977"
},
{
"name": "CVE-2022-3303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3303"
},
{
"name": "CVE-2023-28410",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28410"
},
{
"name": "CVE-2024-2201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2201"
},
{
"name": "CVE-2024-42229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42229"
},
{
"name": "CVE-2024-41092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41092"
},
{
"name": "CVE-2024-42098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42098"
},
{
"name": "CVE-2024-42240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42240"
},
{
"name": "CVE-2024-56658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56658"
},
{
"name": "CVE-2021-47633",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47633"
},
{
"name": "CVE-2021-47644",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47644"
},
{
"name": "CVE-2022-49076",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49076"
},
{
"name": "CVE-2022-49089",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49089"
},
{
"name": "CVE-2022-49135",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49135"
},
{
"name": "CVE-2022-49151",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49151"
},
{
"name": "CVE-2022-49182",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49182"
},
{
"name": "CVE-2022-49201",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49201"
},
{
"name": "CVE-2022-49247",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49247"
},
{
"name": "CVE-2022-49490",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49490"
},
{
"name": "CVE-2022-49626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49626"
},
{
"name": "CVE-2022-49661",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49661"
},
{
"name": "CVE-2021-4453",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4453"
},
{
"name": "CVE-2021-47631",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47631"
},
{
"name": "CVE-2021-47632",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47632"
},
{
"name": "CVE-2021-47635",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47635"
},
{
"name": "CVE-2021-47636",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47636"
},
{
"name": "CVE-2021-47637",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47637"
},
{
"name": "CVE-2021-47638",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47638"
},
{
"name": "CVE-2021-47639",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47639"
},
{
"name": "CVE-2021-47641",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47641"
},
{
"name": "CVE-2021-47642",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47642"
},
{
"name": "CVE-2021-47643",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47643"
},
{
"name": "CVE-2021-47645",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47645"
},
{
"name": "CVE-2021-47646",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47646"
},
{
"name": "CVE-2021-47647",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47647"
},
{
"name": "CVE-2021-47648",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47648"
},
{
"name": "CVE-2021-47649",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47649"
},
{
"name": "CVE-2021-47650",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47650"
},
{
"name": "CVE-2021-47651",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47651"
},
{
"name": "CVE-2021-47652",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47652"
},
{
"name": "CVE-2021-47653",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47653"
},
{
"name": "CVE-2021-47654",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47654"
},
{
"name": "CVE-2021-47656",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47656"
},
{
"name": "CVE-2021-47657",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47657"
},
{
"name": "CVE-2021-47659",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47659"
},
{
"name": "CVE-2022-0995",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0995"
},
{
"name": "CVE-2022-49044",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49044"
},
{
"name": "CVE-2022-49050",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49050"
},
{
"name": "CVE-2022-49051",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49051"
},
{
"name": "CVE-2022-49054",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49054"
},
{
"name": "CVE-2022-49055",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49055"
},
{
"name": "CVE-2022-49058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49058"
},
{
"name": "CVE-2022-49059",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49059"
},
{
"name": "CVE-2022-49060",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49060"
},
{
"name": "CVE-2022-49061",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49061"
},
{
"name": "CVE-2022-49063",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49063"
},
{
"name": "CVE-2022-49065",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49065"
},
{
"name": "CVE-2022-49066",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49066"
},
{
"name": "CVE-2022-49073",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49073"
},
{
"name": "CVE-2022-49074",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49074"
},
{
"name": "CVE-2022-49078",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49078"
},
{
"name": "CVE-2022-49082",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49082"
},
{
"name": "CVE-2022-49083",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49083"
},
{
"name": "CVE-2022-49084",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49084"
},
{
"name": "CVE-2022-49085",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49085"
},
{
"name": "CVE-2022-49086",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49086"
},
{
"name": "CVE-2022-49088",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49088"
},
{
"name": "CVE-2022-49090",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49090"
},
{
"name": "CVE-2022-49091",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49091"
},
{
"name": "CVE-2022-49092",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49092"
},
{
"name": "CVE-2022-49093",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49093"
},
{
"name": "CVE-2022-49095",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49095"
},
{
"name": "CVE-2022-49096",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49096"
},
{
"name": "CVE-2022-49097",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49097"
},
{
"name": "CVE-2022-49098",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49098"
},
{
"name": "CVE-2022-49099",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49099"
},
{
"name": "CVE-2022-49100",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49100"
},
{
"name": "CVE-2022-49102",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49102"
},
{
"name": "CVE-2022-49103",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49103"
},
{
"name": "CVE-2022-49104",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49104"
},
{
"name": "CVE-2022-49105",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49105"
},
{
"name": "CVE-2022-49106",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49106"
},
{
"name": "CVE-2022-49107",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49107"
},
{
"name": "CVE-2022-49109",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49109"
},
{
"name": "CVE-2022-49111",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49111"
},
{
"name": "CVE-2022-49112",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49112"
},
{
"name": "CVE-2022-49113",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49113"
},
{
"name": "CVE-2022-49114",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49114"
},
{
"name": "CVE-2022-49115",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49115"
},
{
"name": "CVE-2022-49116",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49116"
},
{
"name": "CVE-2022-49118",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49118"
},
{
"name": "CVE-2022-49119",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49119"
},
{
"name": "CVE-2022-49120",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49120"
},
{
"name": "CVE-2022-49121",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49121"
},
{
"name": "CVE-2022-49122",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49122"
},
{
"name": "CVE-2022-49126",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49126"
},
{
"name": "CVE-2022-49128",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49128"
},
{
"name": "CVE-2022-49129",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49129"
},
{
"name": "CVE-2022-49130",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49130"
},
{
"name": "CVE-2022-49131",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49131"
},
{
"name": "CVE-2022-49132",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49132"
},
{
"name": "CVE-2022-49137",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49137"
},
{
"name": "CVE-2022-49145",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49145"
},
{
"name": "CVE-2022-49147",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49147"
},
{
"name": "CVE-2022-49148",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49148"
},
{
"name": "CVE-2022-49153",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49153"
},
{
"name": "CVE-2022-49154",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49154"
},
{
"name": "CVE-2022-49155",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49155"
},
{
"name": "CVE-2022-49156",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49156"
},
{
"name": "CVE-2022-49157",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49157"
},
{
"name": "CVE-2022-49158",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49158"
},
{
"name": "CVE-2022-49159",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49159"
},
{
"name": "CVE-2022-49160",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49160"
},
{
"name": "CVE-2022-49162",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49162"
},
{
"name": "CVE-2022-49163",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49163"
},
{
"name": "CVE-2022-49164",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49164"
},
{
"name": "CVE-2022-49165",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49165"
},
{
"name": "CVE-2022-49174",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49174"
},
{
"name": "CVE-2022-49175",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49175"
},
{
"name": "CVE-2022-49176",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49176"
},
{
"name": "CVE-2022-49177",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49177"
},
{
"name": "CVE-2022-49179",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49179"
},
{
"name": "CVE-2022-49180",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49180"
},
{
"name": "CVE-2022-49185",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49185"
},
{
"name": "CVE-2022-49187",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49187"
},
{
"name": "CVE-2022-49188",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49188"
},
{
"name": "CVE-2022-49189",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49189"
},
{
"name": "CVE-2022-49193",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49193"
},
{
"name": "CVE-2022-49194",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49194"
},
{
"name": "CVE-2022-49196",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49196"
},
{
"name": "CVE-2022-49199",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49199"
},
{
"name": "CVE-2022-49200",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49200"
},
{
"name": "CVE-2022-49206",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49206"
},
{
"name": "CVE-2022-49208",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49208"
},
{
"name": "CVE-2022-49212",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49212"
},
{
"name": "CVE-2022-49213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49213"
},
{
"name": "CVE-2022-49214",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49214"
},
{
"name": "CVE-2022-49216",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49216"
},
{
"name": "CVE-2022-49217",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49217"
},
{
"name": "CVE-2022-49218",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49218"
},
{
"name": "CVE-2022-49221",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49221"
},
{
"name": "CVE-2022-49222",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49222"
},
{
"name": "CVE-2022-49224",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49224"
},
{
"name": "CVE-2022-49226",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49226"
},
{
"name": "CVE-2022-49227",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49227"
},
{
"name": "CVE-2022-49232",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49232"
},
{
"name": "CVE-2022-49235",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49235"
},
{
"name": "CVE-2022-49236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49236"
},
{
"name": "CVE-2022-49239",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49239"
},
{
"name": "CVE-2022-49241",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49241"
},
{
"name": "CVE-2022-49242",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49242"
},
{
"name": "CVE-2022-49243",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49243"
},
{
"name": "CVE-2022-49244",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49244"
},
{
"name": "CVE-2022-49246",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49246"
},
{
"name": "CVE-2022-49248",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49248"
},
{
"name": "CVE-2022-49249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49249"
},
{
"name": "CVE-2022-49250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49250"
},
{
"name": "CVE-2022-49251",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49251"
},
{
"name": "CVE-2022-49252",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49252"
},
{
"name": "CVE-2022-49253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49253"
},
{
"name": "CVE-2022-49254",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49254"
},
{
"name": "CVE-2022-49256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49256"
},
{
"name": "CVE-2022-49257",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49257"
},
{
"name": "CVE-2022-49258",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49258"
},
{
"name": "CVE-2022-49259",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49259"
},
{
"name": "CVE-2022-49260",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49260"
},
{
"name": "CVE-2022-49261",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49261"
},
{
"name": "CVE-2022-49262",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49262"
},
{
"name": "CVE-2022-49263",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49263"
},
{
"name": "CVE-2022-49264",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49264"
},
{
"name": "CVE-2022-49265",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49265"
},
{
"name": "CVE-2022-49266",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49266"
},
{
"name": "CVE-2022-49268",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49268"
},
{
"name": "CVE-2022-49269",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49269"
},
{
"name": "CVE-2022-49270",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49270"
},
{
"name": "CVE-2022-49271",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49271"
},
{
"name": "CVE-2022-49272",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49272"
},
{
"name": "CVE-2022-49273",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49273"
},
{
"name": "CVE-2022-49274",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49274"
},
{
"name": "CVE-2022-49275",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49275"
},
{
"name": "CVE-2022-49276",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49276"
},
{
"name": "CVE-2022-49277",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49277"
},
{
"name": "CVE-2022-49278",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49278"
},
{
"name": "CVE-2022-49279",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49279"
},
{
"name": "CVE-2022-49280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49280"
},
{
"name": "CVE-2022-49281",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49281"
},
{
"name": "CVE-2022-49283",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49283"
},
{
"name": "CVE-2022-49285",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49285"
},
{
"name": "CVE-2022-49286",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49286"
},
{
"name": "CVE-2022-49287",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49287"
},
{
"name": "CVE-2022-49288",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49288"
},
{
"name": "CVE-2022-49290",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49290"
},
{
"name": "CVE-2022-49291",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49291"
},
{
"name": "CVE-2022-49292",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49292"
},
{
"name": "CVE-2022-49294",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49294"
},
{
"name": "CVE-2022-49295",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49295"
},
{
"name": "CVE-2022-49297",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49297"
},
{
"name": "CVE-2022-49298",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49298"
},
{
"name": "CVE-2022-49299",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49299"
},
{
"name": "CVE-2022-49300",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49300"
},
{
"name": "CVE-2022-49301",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49301"
},
{
"name": "CVE-2022-49302",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49302"
},
{
"name": "CVE-2022-49304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49304"
},
{
"name": "CVE-2022-49305",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49305"
},
{
"name": "CVE-2022-49307",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49307"
},
{
"name": "CVE-2022-49308",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49308"
},
{
"name": "CVE-2022-49309",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49309"
},
{
"name": "CVE-2022-49310",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49310"
},
{
"name": "CVE-2022-49311",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49311"
},
{
"name": "CVE-2022-49312",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49312"
},
{
"name": "CVE-2022-49313",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49313"
},
{
"name": "CVE-2022-49314",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49314"
},
{
"name": "CVE-2022-49315",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49315"
},
{
"name": "CVE-2022-49316",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49316"
},
{
"name": "CVE-2022-49319",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49319"
},
{
"name": "CVE-2022-49320",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49320"
},
{
"name": "CVE-2022-49321",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49321"
},
{
"name": "CVE-2022-49322",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49322"
},
{
"name": "CVE-2022-49323",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49323"
},
{
"name": "CVE-2022-49326",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49326"
},
{
"name": "CVE-2022-49327",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49327"
},
{
"name": "CVE-2022-49328",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49328"
},
{
"name": "CVE-2022-49331",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49331"
},
{
"name": "CVE-2022-49332",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49332"
},
{
"name": "CVE-2022-49335",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49335"
},
{
"name": "CVE-2022-49336",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49336"
},
{
"name": "CVE-2022-49337",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49337"
},
{
"name": "CVE-2022-49339",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49339"
},
{
"name": "CVE-2022-49341",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49341"
},
{
"name": "CVE-2022-49342",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49342"
},
{
"name": "CVE-2022-49343",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49343"
},
{
"name": "CVE-2022-49345",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49345"
},
{
"name": "CVE-2022-49346",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49346"
},
{
"name": "CVE-2022-49347",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49347"
},
{
"name": "CVE-2022-49348",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49348"
},
{
"name": "CVE-2022-49349",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49349"
},
{
"name": "CVE-2022-49350",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49350"
},
{
"name": "CVE-2022-49351",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49351"
},
{
"name": "CVE-2022-49352",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49352"
},
{
"name": "CVE-2022-49354",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49354"
},
{
"name": "CVE-2022-49356",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49356"
},
{
"name": "CVE-2022-49357",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49357"
},
{
"name": "CVE-2022-49367",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49367"
},
{
"name": "CVE-2022-49368",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49368"
},
{
"name": "CVE-2022-49370",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49370"
},
{
"name": "CVE-2022-49371",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49371"
},
{
"name": "CVE-2022-49373",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49373"
},
{
"name": "CVE-2022-49375",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49375"
},
{
"name": "CVE-2022-49376",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49376"
},
{
"name": "CVE-2022-49377",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49377"
},
{
"name": "CVE-2022-49378",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49378"
},
{
"name": "CVE-2022-49379",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49379"
},
{
"name": "CVE-2022-49381",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49381"
},
{
"name": "CVE-2022-49382",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49382"
},
{
"name": "CVE-2022-49384",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49384"
},
{
"name": "CVE-2022-49385",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49385"
},
{
"name": "CVE-2022-49386",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49386"
},
{
"name": "CVE-2022-49389",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49389"
},
{
"name": "CVE-2022-49392",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49392"
},
{
"name": "CVE-2022-49394",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49394"
},
{
"name": "CVE-2022-49396",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49396"
},
{
"name": "CVE-2022-49397",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49397"
},
{
"name": "CVE-2022-49398",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49398"
},
{
"name": "CVE-2022-49399",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49399"
},
{
"name": "CVE-2022-49400",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49400"
},
{
"name": "CVE-2022-49402",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49402"
},
{
"name": "CVE-2022-49404",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49404"
},
{
"name": "CVE-2022-49407",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49407"
},
{
"name": "CVE-2022-49409",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49409"
},
{
"name": "CVE-2022-49410",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49410"
},
{
"name": "CVE-2022-49411",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49411"
},
{
"name": "CVE-2022-49412",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49412"
},
{
"name": "CVE-2022-49413",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49413"
},
{
"name": "CVE-2022-49414",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49414"
},
{
"name": "CVE-2022-49416",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49416"
},
{
"name": "CVE-2022-49418",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49418"
},
{
"name": "CVE-2022-49421",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49421"
},
{
"name": "CVE-2022-49422",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49422"
},
{
"name": "CVE-2022-49424",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49424"
},
{
"name": "CVE-2022-49426",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49426"
},
{
"name": "CVE-2022-49427",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49427"
},
{
"name": "CVE-2022-49429",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49429"
},
{
"name": "CVE-2022-49430",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49430"
},
{
"name": "CVE-2022-49431",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49431"
},
{
"name": "CVE-2022-49432",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49432"
},
{
"name": "CVE-2022-49433",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49433"
},
{
"name": "CVE-2022-49434",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49434"
},
{
"name": "CVE-2022-49435",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49435"
},
{
"name": "CVE-2022-49437",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49437"
},
{
"name": "CVE-2022-49438",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49438"
},
{
"name": "CVE-2022-49440",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49440"
},
{
"name": "CVE-2022-49441",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49441"
},
{
"name": "CVE-2022-49442",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49442"
},
{
"name": "CVE-2022-49443",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49443"
},
{
"name": "CVE-2022-49444",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49444"
},
{
"name": "CVE-2022-49445",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49445"
},
{
"name": "CVE-2022-49447",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49447"
},
{
"name": "CVE-2022-49448",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49448"
},
{
"name": "CVE-2022-49449",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49449"
},
{
"name": "CVE-2022-49451",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49451"
},
{
"name": "CVE-2022-49453",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49453"
},
{
"name": "CVE-2022-49455",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49455"
},
{
"name": "CVE-2022-49459",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49459"
},
{
"name": "CVE-2022-49460",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49460"
},
{
"name": "CVE-2022-49462",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49462"
},
{
"name": "CVE-2022-49463",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49463"
},
{
"name": "CVE-2022-49466",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49466"
},
{
"name": "CVE-2022-49467",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49467"
},
{
"name": "CVE-2022-49468",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49468"
},
{
"name": "CVE-2022-49472",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49472"
},
{
"name": "CVE-2022-49473",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49473"
},
{
"name": "CVE-2022-49474",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49474"
},
{
"name": "CVE-2022-49475",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49475"
},
{
"name": "CVE-2022-49477",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49477"
},
{
"name": "CVE-2022-49478",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49478"
},
{
"name": "CVE-2022-49480",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49480"
},
{
"name": "CVE-2022-49481",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49481"
},
{
"name": "CVE-2022-49482",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49482"
},
{
"name": "CVE-2022-49486",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49486"
},
{
"name": "CVE-2022-49487",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49487"
},
{
"name": "CVE-2022-49488",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49488"
},
{
"name": "CVE-2022-49489",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49489"
},
{
"name": "CVE-2022-49491",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49491"
},
{
"name": "CVE-2022-49492",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49492"
},
{
"name": "CVE-2022-49493",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49493"
},
{
"name": "CVE-2022-49494",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49494"
},
{
"name": "CVE-2022-49495",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49495"
},
{
"name": "CVE-2022-49498",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49498"
},
{
"name": "CVE-2022-49501",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49501"
},
{
"name": "CVE-2022-49502",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49502"
},
{
"name": "CVE-2022-49503",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49503"
},
{
"name": "CVE-2022-49504",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49504"
},
{
"name": "CVE-2022-49505",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49505"
},
{
"name": "CVE-2022-49506",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49506"
},
{
"name": "CVE-2022-49507",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49507"
},
{
"name": "CVE-2022-49508",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49508"
},
{
"name": "CVE-2022-49509",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49509"
},
{
"name": "CVE-2022-49512",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49512"
},
{
"name": "CVE-2022-49514",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49514"
},
{
"name": "CVE-2022-49515",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49515"
},
{
"name": "CVE-2022-49517",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49517"
},
{
"name": "CVE-2022-49519",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49519"
},
{
"name": "CVE-2022-49520",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49520"
},
{
"name": "CVE-2022-49521",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49521"
},
{
"name": "CVE-2022-49522",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49522"
},
{
"name": "CVE-2022-49523",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49523"
},
{
"name": "CVE-2022-49524",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49524"
},
{
"name": "CVE-2022-49525",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49525"
},
{
"name": "CVE-2022-49526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49526"
},
{
"name": "CVE-2022-49527",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49527"
},
{
"name": "CVE-2022-49532",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49532"
},
{
"name": "CVE-2022-49534",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49534"
},
{
"name": "CVE-2022-49535",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49535"
},
{
"name": "CVE-2022-49536",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49536"
},
{
"name": "CVE-2022-49537",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49537"
},
{
"name": "CVE-2022-49541",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49541"
},
{
"name": "CVE-2022-49542",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49542"
},
{
"name": "CVE-2022-49544",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49544"
},
{
"name": "CVE-2022-49545",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49545"
},
{
"name": "CVE-2022-49546",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49546"
},
{
"name": "CVE-2022-49549",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49549"
},
{
"name": "CVE-2022-49551",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49551"
},
{
"name": "CVE-2022-49555",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49555"
},
{
"name": "CVE-2022-49556",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49556"
},
{
"name": "CVE-2022-49559",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49559"
},
{
"name": "CVE-2022-49562",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49562"
},
{
"name": "CVE-2022-49563",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49563"
},
{
"name": "CVE-2022-49564",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49564"
},
{
"name": "CVE-2022-49566",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49566"
},
{
"name": "CVE-2022-49568",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49568"
},
{
"name": "CVE-2022-49569",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49569"
},
{
"name": "CVE-2022-49570",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49570"
},
{
"name": "CVE-2022-49579",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49579"
},
{
"name": "CVE-2022-49581",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49581"
},
{
"name": "CVE-2022-49583",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49583"
},
{
"name": "CVE-2022-49584",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49584"
},
{
"name": "CVE-2022-49591",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49591"
},
{
"name": "CVE-2022-49592",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49592"
},
{
"name": "CVE-2022-49603",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49603"
},
{
"name": "CVE-2022-49605",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49605"
},
{
"name": "CVE-2022-49606",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49606"
},
{
"name": "CVE-2022-49607",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49607"
},
{
"name": "CVE-2022-49609",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49609"
},
{
"name": "CVE-2022-49610",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49610"
},
{
"name": "CVE-2022-49611",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49611"
},
{
"name": "CVE-2022-49613",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49613"
},
{
"name": "CVE-2022-49615",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49615"
},
{
"name": "CVE-2022-49616",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49616"
},
{
"name": "CVE-2022-49617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49617"
},
{
"name": "CVE-2022-49618",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49618"
},
{
"name": "CVE-2022-49621",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49621"
},
{
"name": "CVE-2022-49623",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49623"
},
{
"name": "CVE-2022-49625",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49625"
},
{
"name": "CVE-2022-49627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49627"
},
{
"name": "CVE-2022-49628",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49628"
},
{
"name": "CVE-2022-49631",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49631"
},
{
"name": "CVE-2022-49634",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49634"
},
{
"name": "CVE-2022-49640",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49640"
},
{
"name": "CVE-2022-49641",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49641"
},
{
"name": "CVE-2022-49642",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49642"
},
{
"name": "CVE-2022-49643",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49643"
},
{
"name": "CVE-2022-49644",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49644"
},
{
"name": "CVE-2022-49645",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49645"
},
{
"name": "CVE-2022-49646",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49646"
},
{
"name": "CVE-2022-49647",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49647"
},
{
"name": "CVE-2022-49648",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49648"
},
{
"name": "CVE-2022-49649",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49649"
},
{
"name": "CVE-2022-49652",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49652"
},
{
"name": "CVE-2022-49653",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49653"
},
{
"name": "CVE-2022-49656",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49656"
},
{
"name": "CVE-2022-49657",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49657"
},
{
"name": "CVE-2022-49663",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49663"
},
{
"name": "CVE-2022-49665",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49665"
},
{
"name": "CVE-2022-49667",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49667"
},
{
"name": "CVE-2022-49668",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49668"
},
{
"name": "CVE-2022-49670",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49670"
},
{
"name": "CVE-2022-49671",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49671"
},
{
"name": "CVE-2022-49672",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49672"
},
{
"name": "CVE-2022-49673",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49673"
},
{
"name": "CVE-2022-49674",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49674"
},
{
"name": "CVE-2022-49675",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49675"
},
{
"name": "CVE-2022-49676",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49676"
},
{
"name": "CVE-2022-49677",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49677"
},
{
"name": "CVE-2022-49678",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49678"
},
{
"name": "CVE-2022-49679",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49679"
},
{
"name": "CVE-2022-49680",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49680"
},
{
"name": "CVE-2022-49683",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49683"
},
{
"name": "CVE-2022-49685",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49685"
},
{
"name": "CVE-2022-49687",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49687"
},
{
"name": "CVE-2022-49688",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49688"
},
{
"name": "CVE-2022-49693",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49693"
},
{
"name": "CVE-2022-49695",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49695"
},
{
"name": "CVE-2022-49699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49699"
},
{
"name": "CVE-2022-49700",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49700"
},
{
"name": "CVE-2022-49701",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49701"
},
{
"name": "CVE-2022-49703",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49703"
},
{
"name": "CVE-2022-49704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49704"
},
{
"name": "CVE-2022-49705",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49705"
},
{
"name": "CVE-2022-49707",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49707"
},
{
"name": "CVE-2022-49708",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49708"
},
{
"name": "CVE-2022-49710",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49710"
},
{
"name": "CVE-2022-49711",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49711"
},
{
"name": "CVE-2022-49712",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49712"
},
{
"name": "CVE-2022-49713",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49713"
},
{
"name": "CVE-2022-49714",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49714"
},
{
"name": "CVE-2022-49715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49715"
},
{
"name": "CVE-2022-49716",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49716"
},
{
"name": "CVE-2022-49719",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49719"
},
{
"name": "CVE-2022-49720",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49720"
},
{
"name": "CVE-2022-49721",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49721"
},
{
"name": "CVE-2022-49722",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49722"
},
{
"name": "CVE-2022-49723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49723"
},
{
"name": "CVE-2022-49724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49724"
},
{
"name": "CVE-2022-49725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49725"
},
{
"name": "CVE-2022-49726",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49726"
},
{
"name": "CVE-2022-49729",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49729"
},
{
"name": "CVE-2022-49730",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49730"
},
{
"name": "CVE-2022-49731",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49731"
},
{
"name": "CVE-2022-49733",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49733"
},
{
"name": "CVE-2024-57996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57996"
},
{
"name": "CVE-2024-58014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58014"
},
{
"name": "CVE-2025-21718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21718"
},
{
"name": "CVE-2025-21772",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21772"
},
{
"name": "CVE-2025-21780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21780"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0252",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-03-28T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-03-26",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1027-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251027-1"
},
{
"published_at": "2025-03-21",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:0983-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250983-1"
}
]
}
CERTFR-2025-AVI-0307
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Desktop 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Manager Proxy 4.3 | ||
| SUSE | N/A | Basesystem Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Real Time Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP4 | ||
| SUSE | N/A | Public Cloud Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.3 | ||
| SUSE | N/A | openSUSE Leap 15.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Manager Server 4.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | Legacy Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Workstation Extension 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.1 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | Development Tools Module 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Desktop 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Basesystem Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Real Time Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Public Cloud Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Legacy Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Workstation Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "Development Tools Module 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2017-5753",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5753"
},
{
"name": "CVE-2020-27835",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27835"
},
{
"name": "CVE-2022-1016",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1016"
},
{
"name": "CVE-2022-1184",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1184"
},
{
"name": "CVE-2022-1048",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1048"
},
{
"name": "CVE-2022-0168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0168"
},
{
"name": "CVE-2022-3435",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3435"
},
{
"name": "CVE-2022-29901",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29901"
},
{
"name": "CVE-2022-29900",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29900"
},
{
"name": "CVE-2022-2977",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2977"
},
{
"name": "CVE-2022-3303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3303"
},
{
"name": "CVE-2023-0179",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0179"
},
{
"name": "CVE-2023-1652",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1652"
},
{
"name": "CVE-2023-28410",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28410"
},
{
"name": "CVE-2023-2162",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2162"
},
{
"name": "CVE-2023-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3567"
},
{
"name": "CVE-2024-2201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2201"
},
{
"name": "CVE-2024-26634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26634"
},
{
"name": "CVE-2021-47248",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47248"
},
{
"name": "CVE-2024-35910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35910"
},
{
"name": "CVE-2024-26873",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26873"
},
{
"name": "CVE-2024-35826",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35826"
},
{
"name": "CVE-2024-41005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41005"
},
{
"name": "CVE-2024-38606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38606"
},
{
"name": "CVE-2024-41077",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41077"
},
{
"name": "CVE-2024-42229",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42229"
},
{
"name": "CVE-2024-41092",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41092"
},
{
"name": "CVE-2024-42098",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42098"
},
{
"name": "CVE-2024-42240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42240"
},
{
"name": "CVE-2021-47517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47517"
},
{
"name": "CVE-2024-46782",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46782"
},
{
"name": "CVE-2024-50126",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50126"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-53057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53057"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-42307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42307"
},
{
"name": "CVE-2024-43820",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43820"
},
{
"name": "CVE-2024-49924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49924"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53064"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56651"
},
{
"name": "CVE-2024-49994",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49994"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-56703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56703"
},
{
"name": "CVE-2025-21631",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21631"
},
{
"name": "CVE-2025-21671",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21671"
},
{
"name": "CVE-2024-49940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49940"
},
{
"name": "CVE-2024-50056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50056"
},
{
"name": "CVE-2024-50140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50140"
},
{
"name": "CVE-2024-50152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50152"
},
{
"name": "CVE-2024-53163",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53163"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-56702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56702"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2023-52926",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52926"
},
{
"name": "CVE-2024-47408",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47408"
},
{
"name": "CVE-2024-49571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49571"
},
{
"name": "CVE-2024-53680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53680"
},
{
"name": "CVE-2024-56640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56640"
},
{
"name": "CVE-2024-56718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56718"
},
{
"name": "CVE-2024-56770",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56770"
},
{
"name": "CVE-2024-57807",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57807"
},
{
"name": "CVE-2024-57900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57900"
},
{
"name": "CVE-2021-47633",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47633"
},
{
"name": "CVE-2021-47644",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47644"
},
{
"name": "CVE-2022-49076",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49076"
},
{
"name": "CVE-2022-49089",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49089"
},
{
"name": "CVE-2022-49134",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49134"
},
{
"name": "CVE-2022-49135",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49135"
},
{
"name": "CVE-2022-49151",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49151"
},
{
"name": "CVE-2022-49178",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49178"
},
{
"name": "CVE-2022-49182",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49182"
},
{
"name": "CVE-2022-49201",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49201"
},
{
"name": "CVE-2022-49247",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49247"
},
{
"name": "CVE-2022-49490",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49490"
},
{
"name": "CVE-2022-49626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49626"
},
{
"name": "CVE-2022-49661",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49661"
},
{
"name": "CVE-2024-57979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57979"
},
{
"name": "CVE-2025-21733",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21733"
},
{
"name": "CVE-2025-21753",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21753"
},
{
"name": "CVE-2025-21754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21754"
},
{
"name": "CVE-2021-4453",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4453"
},
{
"name": "CVE-2021-47631",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47631"
},
{
"name": "CVE-2021-47632",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47632"
},
{
"name": "CVE-2021-47635",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47635"
},
{
"name": "CVE-2021-47636",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47636"
},
{
"name": "CVE-2021-47637",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47637"
},
{
"name": "CVE-2021-47638",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47638"
},
{
"name": "CVE-2021-47639",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47639"
},
{
"name": "CVE-2021-47641",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47641"
},
{
"name": "CVE-2021-47642",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47642"
},
{
"name": "CVE-2021-47643",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47643"
},
{
"name": "CVE-2021-47645",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47645"
},
{
"name": "CVE-2021-47646",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47646"
},
{
"name": "CVE-2021-47647",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47647"
},
{
"name": "CVE-2021-47648",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47648"
},
{
"name": "CVE-2021-47649",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47649"
},
{
"name": "CVE-2021-47650",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47650"
},
{
"name": "CVE-2021-47651",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47651"
},
{
"name": "CVE-2021-47652",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47652"
},
{
"name": "CVE-2021-47653",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47653"
},
{
"name": "CVE-2021-47654",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47654"
},
{
"name": "CVE-2021-47656",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47656"
},
{
"name": "CVE-2021-47657",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47657"
},
{
"name": "CVE-2021-47659",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47659"
},
{
"name": "CVE-2022-0995",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0995"
},
{
"name": "CVE-2022-49044",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49044"
},
{
"name": "CVE-2022-49050",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49050"
},
{
"name": "CVE-2022-49051",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49051"
},
{
"name": "CVE-2022-49054",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49054"
},
{
"name": "CVE-2022-49055",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49055"
},
{
"name": "CVE-2022-49058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49058"
},
{
"name": "CVE-2022-49059",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49059"
},
{
"name": "CVE-2022-49060",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49060"
},
{
"name": "CVE-2022-49061",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49061"
},
{
"name": "CVE-2022-49063",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49063"
},
{
"name": "CVE-2022-49065",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49065"
},
{
"name": "CVE-2022-49066",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49066"
},
{
"name": "CVE-2022-49073",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49073"
},
{
"name": "CVE-2022-49074",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49074"
},
{
"name": "CVE-2022-49078",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49078"
},
{
"name": "CVE-2022-49082",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49082"
},
{
"name": "CVE-2022-49083",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49083"
},
{
"name": "CVE-2022-49084",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49084"
},
{
"name": "CVE-2022-49085",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49085"
},
{
"name": "CVE-2022-49086",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49086"
},
{
"name": "CVE-2022-49088",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49088"
},
{
"name": "CVE-2022-49090",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49090"
},
{
"name": "CVE-2022-49091",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49091"
},
{
"name": "CVE-2022-49092",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49092"
},
{
"name": "CVE-2022-49093",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49093"
},
{
"name": "CVE-2022-49095",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49095"
},
{
"name": "CVE-2022-49096",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49096"
},
{
"name": "CVE-2022-49097",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49097"
},
{
"name": "CVE-2022-49098",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49098"
},
{
"name": "CVE-2022-49099",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49099"
},
{
"name": "CVE-2022-49100",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49100"
},
{
"name": "CVE-2022-49102",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49102"
},
{
"name": "CVE-2022-49103",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49103"
},
{
"name": "CVE-2022-49104",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49104"
},
{
"name": "CVE-2022-49105",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49105"
},
{
"name": "CVE-2022-49106",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49106"
},
{
"name": "CVE-2022-49107",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49107"
},
{
"name": "CVE-2022-49109",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49109"
},
{
"name": "CVE-2022-49111",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49111"
},
{
"name": "CVE-2022-49112",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49112"
},
{
"name": "CVE-2022-49113",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49113"
},
{
"name": "CVE-2022-49114",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49114"
},
{
"name": "CVE-2022-49115",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49115"
},
{
"name": "CVE-2022-49116",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49116"
},
{
"name": "CVE-2022-49118",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49118"
},
{
"name": "CVE-2022-49119",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49119"
},
{
"name": "CVE-2022-49120",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49120"
},
{
"name": "CVE-2022-49121",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49121"
},
{
"name": "CVE-2022-49122",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49122"
},
{
"name": "CVE-2022-49126",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49126"
},
{
"name": "CVE-2022-49128",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49128"
},
{
"name": "CVE-2022-49129",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49129"
},
{
"name": "CVE-2022-49130",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49130"
},
{
"name": "CVE-2022-49131",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49131"
},
{
"name": "CVE-2022-49132",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49132"
},
{
"name": "CVE-2022-49137",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49137"
},
{
"name": "CVE-2022-49145",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49145"
},
{
"name": "CVE-2022-49147",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49147"
},
{
"name": "CVE-2022-49148",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49148"
},
{
"name": "CVE-2022-49153",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49153"
},
{
"name": "CVE-2022-49154",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49154"
},
{
"name": "CVE-2022-49155",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49155"
},
{
"name": "CVE-2022-49156",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49156"
},
{
"name": "CVE-2022-49157",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49157"
},
{
"name": "CVE-2022-49158",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49158"
},
{
"name": "CVE-2022-49159",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49159"
},
{
"name": "CVE-2022-49160",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49160"
},
{
"name": "CVE-2022-49162",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49162"
},
{
"name": "CVE-2022-49163",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49163"
},
{
"name": "CVE-2022-49164",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49164"
},
{
"name": "CVE-2022-49165",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49165"
},
{
"name": "CVE-2022-49174",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49174"
},
{
"name": "CVE-2022-49175",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49175"
},
{
"name": "CVE-2022-49176",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49176"
},
{
"name": "CVE-2022-49177",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49177"
},
{
"name": "CVE-2022-49179",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49179"
},
{
"name": "CVE-2022-49180",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49180"
},
{
"name": "CVE-2022-49185",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49185"
},
{
"name": "CVE-2022-49187",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49187"
},
{
"name": "CVE-2022-49188",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49188"
},
{
"name": "CVE-2022-49189",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49189"
},
{
"name": "CVE-2022-49193",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49193"
},
{
"name": "CVE-2022-49194",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49194"
},
{
"name": "CVE-2022-49196",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49196"
},
{
"name": "CVE-2022-49199",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49199"
},
{
"name": "CVE-2022-49200",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49200"
},
{
"name": "CVE-2022-49206",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49206"
},
{
"name": "CVE-2022-49208",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49208"
},
{
"name": "CVE-2022-49212",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49212"
},
{
"name": "CVE-2022-49213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49213"
},
{
"name": "CVE-2022-49214",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49214"
},
{
"name": "CVE-2022-49216",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49216"
},
{
"name": "CVE-2022-49217",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49217"
},
{
"name": "CVE-2022-49218",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49218"
},
{
"name": "CVE-2022-49221",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49221"
},
{
"name": "CVE-2022-49222",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49222"
},
{
"name": "CVE-2022-49224",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49224"
},
{
"name": "CVE-2022-49226",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49226"
},
{
"name": "CVE-2022-49227",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49227"
},
{
"name": "CVE-2022-49232",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49232"
},
{
"name": "CVE-2022-49235",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49235"
},
{
"name": "CVE-2022-49236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49236"
},
{
"name": "CVE-2022-49239",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49239"
},
{
"name": "CVE-2022-49241",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49241"
},
{
"name": "CVE-2022-49242",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49242"
},
{
"name": "CVE-2022-49243",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49243"
},
{
"name": "CVE-2022-49244",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49244"
},
{
"name": "CVE-2022-49246",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49246"
},
{
"name": "CVE-2022-49248",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49248"
},
{
"name": "CVE-2022-49249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49249"
},
{
"name": "CVE-2022-49250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49250"
},
{
"name": "CVE-2022-49251",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49251"
},
{
"name": "CVE-2022-49252",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49252"
},
{
"name": "CVE-2022-49253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49253"
},
{
"name": "CVE-2022-49254",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49254"
},
{
"name": "CVE-2022-49256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49256"
},
{
"name": "CVE-2022-49257",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49257"
},
{
"name": "CVE-2022-49258",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49258"
},
{
"name": "CVE-2022-49259",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49259"
},
{
"name": "CVE-2022-49260",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49260"
},
{
"name": "CVE-2022-49261",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49261"
},
{
"name": "CVE-2022-49262",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49262"
},
{
"name": "CVE-2022-49263",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49263"
},
{
"name": "CVE-2022-49264",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49264"
},
{
"name": "CVE-2022-49265",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49265"
},
{
"name": "CVE-2022-49266",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49266"
},
{
"name": "CVE-2022-49268",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49268"
},
{
"name": "CVE-2022-49269",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49269"
},
{
"name": "CVE-2022-49270",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49270"
},
{
"name": "CVE-2022-49271",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49271"
},
{
"name": "CVE-2022-49272",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49272"
},
{
"name": "CVE-2022-49273",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49273"
},
{
"name": "CVE-2022-49274",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49274"
},
{
"name": "CVE-2022-49275",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49275"
},
{
"name": "CVE-2022-49276",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49276"
},
{
"name": "CVE-2022-49277",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49277"
},
{
"name": "CVE-2022-49278",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49278"
},
{
"name": "CVE-2022-49279",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49279"
},
{
"name": "CVE-2022-49280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49280"
},
{
"name": "CVE-2022-49281",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49281"
},
{
"name": "CVE-2022-49283",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49283"
},
{
"name": "CVE-2022-49285",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49285"
},
{
"name": "CVE-2022-49286",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49286"
},
{
"name": "CVE-2022-49287",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49287"
},
{
"name": "CVE-2022-49288",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49288"
},
{
"name": "CVE-2022-49290",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49290"
},
{
"name": "CVE-2022-49291",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49291"
},
{
"name": "CVE-2022-49292",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49292"
},
{
"name": "CVE-2022-49294",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49294"
},
{
"name": "CVE-2022-49295",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49295"
},
{
"name": "CVE-2022-49297",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49297"
},
{
"name": "CVE-2022-49298",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49298"
},
{
"name": "CVE-2022-49299",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49299"
},
{
"name": "CVE-2022-49300",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49300"
},
{
"name": "CVE-2022-49301",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49301"
},
{
"name": "CVE-2022-49302",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49302"
},
{
"name": "CVE-2022-49304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49304"
},
{
"name": "CVE-2022-49305",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49305"
},
{
"name": "CVE-2022-49307",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49307"
},
{
"name": "CVE-2022-49308",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49308"
},
{
"name": "CVE-2022-49309",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49309"
},
{
"name": "CVE-2022-49310",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49310"
},
{
"name": "CVE-2022-49311",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49311"
},
{
"name": "CVE-2022-49312",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49312"
},
{
"name": "CVE-2022-49313",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49313"
},
{
"name": "CVE-2022-49314",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49314"
},
{
"name": "CVE-2022-49315",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49315"
},
{
"name": "CVE-2022-49316",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49316"
},
{
"name": "CVE-2022-49319",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49319"
},
{
"name": "CVE-2022-49320",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49320"
},
{
"name": "CVE-2022-49321",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49321"
},
{
"name": "CVE-2022-49322",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49322"
},
{
"name": "CVE-2022-49323",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49323"
},
{
"name": "CVE-2022-49326",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49326"
},
{
"name": "CVE-2022-49327",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49327"
},
{
"name": "CVE-2022-49328",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49328"
},
{
"name": "CVE-2022-49331",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49331"
},
{
"name": "CVE-2022-49332",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49332"
},
{
"name": "CVE-2022-49335",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49335"
},
{
"name": "CVE-2022-49336",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49336"
},
{
"name": "CVE-2022-49337",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49337"
},
{
"name": "CVE-2022-49339",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49339"
},
{
"name": "CVE-2022-49341",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49341"
},
{
"name": "CVE-2022-49342",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49342"
},
{
"name": "CVE-2022-49343",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49343"
},
{
"name": "CVE-2022-49345",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49345"
},
{
"name": "CVE-2022-49346",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49346"
},
{
"name": "CVE-2022-49347",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49347"
},
{
"name": "CVE-2022-49348",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49348"
},
{
"name": "CVE-2022-49349",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49349"
},
{
"name": "CVE-2022-49350",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49350"
},
{
"name": "CVE-2022-49351",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49351"
},
{
"name": "CVE-2022-49352",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49352"
},
{
"name": "CVE-2022-49354",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49354"
},
{
"name": "CVE-2022-49356",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49356"
},
{
"name": "CVE-2022-49357",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49357"
},
{
"name": "CVE-2022-49367",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49367"
},
{
"name": "CVE-2022-49368",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49368"
},
{
"name": "CVE-2022-49370",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49370"
},
{
"name": "CVE-2022-49371",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49371"
},
{
"name": "CVE-2022-49373",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49373"
},
{
"name": "CVE-2022-49375",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49375"
},
{
"name": "CVE-2022-49376",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49376"
},
{
"name": "CVE-2022-49377",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49377"
},
{
"name": "CVE-2022-49378",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49378"
},
{
"name": "CVE-2022-49379",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49379"
},
{
"name": "CVE-2022-49381",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49381"
},
{
"name": "CVE-2022-49382",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49382"
},
{
"name": "CVE-2022-49384",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49384"
},
{
"name": "CVE-2022-49385",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49385"
},
{
"name": "CVE-2022-49386",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49386"
},
{
"name": "CVE-2022-49389",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49389"
},
{
"name": "CVE-2022-49392",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49392"
},
{
"name": "CVE-2022-49394",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49394"
},
{
"name": "CVE-2022-49396",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49396"
},
{
"name": "CVE-2022-49397",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49397"
},
{
"name": "CVE-2022-49398",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49398"
},
{
"name": "CVE-2022-49399",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49399"
},
{
"name": "CVE-2022-49400",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49400"
},
{
"name": "CVE-2022-49402",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49402"
},
{
"name": "CVE-2022-49404",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49404"
},
{
"name": "CVE-2022-49407",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49407"
},
{
"name": "CVE-2022-49409",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49409"
},
{
"name": "CVE-2022-49410",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49410"
},
{
"name": "CVE-2022-49411",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49411"
},
{
"name": "CVE-2022-49412",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49412"
},
{
"name": "CVE-2022-49413",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49413"
},
{
"name": "CVE-2022-49414",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49414"
},
{
"name": "CVE-2022-49416",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49416"
},
{
"name": "CVE-2022-49418",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49418"
},
{
"name": "CVE-2022-49421",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49421"
},
{
"name": "CVE-2022-49422",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49422"
},
{
"name": "CVE-2022-49424",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49424"
},
{
"name": "CVE-2022-49426",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49426"
},
{
"name": "CVE-2022-49427",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49427"
},
{
"name": "CVE-2022-49429",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49429"
},
{
"name": "CVE-2022-49430",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49430"
},
{
"name": "CVE-2022-49431",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49431"
},
{
"name": "CVE-2022-49432",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49432"
},
{
"name": "CVE-2022-49433",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49433"
},
{
"name": "CVE-2022-49434",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49434"
},
{
"name": "CVE-2022-49435",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49435"
},
{
"name": "CVE-2022-49437",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49437"
},
{
"name": "CVE-2022-49438",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49438"
},
{
"name": "CVE-2022-49440",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49440"
},
{
"name": "CVE-2022-49441",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49441"
},
{
"name": "CVE-2022-49442",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49442"
},
{
"name": "CVE-2022-49443",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49443"
},
{
"name": "CVE-2022-49444",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49444"
},
{
"name": "CVE-2022-49445",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49445"
},
{
"name": "CVE-2022-49447",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49447"
},
{
"name": "CVE-2022-49448",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49448"
},
{
"name": "CVE-2022-49449",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49449"
},
{
"name": "CVE-2022-49451",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49451"
},
{
"name": "CVE-2022-49453",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49453"
},
{
"name": "CVE-2022-49455",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49455"
},
{
"name": "CVE-2022-49459",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49459"
},
{
"name": "CVE-2022-49460",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49460"
},
{
"name": "CVE-2022-49462",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49462"
},
{
"name": "CVE-2022-49463",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49463"
},
{
"name": "CVE-2022-49466",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49466"
},
{
"name": "CVE-2022-49467",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49467"
},
{
"name": "CVE-2022-49468",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49468"
},
{
"name": "CVE-2022-49472",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49472"
},
{
"name": "CVE-2022-49473",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49473"
},
{
"name": "CVE-2022-49474",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49474"
},
{
"name": "CVE-2022-49475",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49475"
},
{
"name": "CVE-2022-49477",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49477"
},
{
"name": "CVE-2022-49478",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49478"
},
{
"name": "CVE-2022-49480",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49480"
},
{
"name": "CVE-2022-49481",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49481"
},
{
"name": "CVE-2022-49482",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49482"
},
{
"name": "CVE-2022-49486",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49486"
},
{
"name": "CVE-2022-49487",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49487"
},
{
"name": "CVE-2022-49488",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49488"
},
{
"name": "CVE-2022-49489",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49489"
},
{
"name": "CVE-2022-49491",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49491"
},
{
"name": "CVE-2022-49492",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49492"
},
{
"name": "CVE-2022-49493",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49493"
},
{
"name": "CVE-2022-49494",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49494"
},
{
"name": "CVE-2022-49495",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49495"
},
{
"name": "CVE-2022-49498",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49498"
},
{
"name": "CVE-2022-49501",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49501"
},
{
"name": "CVE-2022-49502",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49502"
},
{
"name": "CVE-2022-49503",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49503"
},
{
"name": "CVE-2022-49504",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49504"
},
{
"name": "CVE-2022-49505",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49505"
},
{
"name": "CVE-2022-49506",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49506"
},
{
"name": "CVE-2022-49507",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49507"
},
{
"name": "CVE-2022-49508",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49508"
},
{
"name": "CVE-2022-49509",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49509"
},
{
"name": "CVE-2022-49512",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49512"
},
{
"name": "CVE-2022-49514",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49514"
},
{
"name": "CVE-2022-49515",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49515"
},
{
"name": "CVE-2022-49517",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49517"
},
{
"name": "CVE-2022-49519",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49519"
},
{
"name": "CVE-2022-49520",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49520"
},
{
"name": "CVE-2022-49521",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49521"
},
{
"name": "CVE-2022-49522",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49522"
},
{
"name": "CVE-2022-49523",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49523"
},
{
"name": "CVE-2022-49524",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49524"
},
{
"name": "CVE-2022-49525",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49525"
},
{
"name": "CVE-2022-49526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49526"
},
{
"name": "CVE-2022-49527",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49527"
},
{
"name": "CVE-2022-49532",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49532"
},
{
"name": "CVE-2022-49534",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49534"
},
{
"name": "CVE-2022-49535",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49535"
},
{
"name": "CVE-2022-49536",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49536"
},
{
"name": "CVE-2022-49537",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49537"
},
{
"name": "CVE-2022-49541",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49541"
},
{
"name": "CVE-2022-49542",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49542"
},
{
"name": "CVE-2022-49544",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49544"
},
{
"name": "CVE-2022-49545",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49545"
},
{
"name": "CVE-2022-49546",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49546"
},
{
"name": "CVE-2022-49549",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49549"
},
{
"name": "CVE-2022-49551",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49551"
},
{
"name": "CVE-2022-49555",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49555"
},
{
"name": "CVE-2022-49556",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49556"
},
{
"name": "CVE-2022-49559",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49559"
},
{
"name": "CVE-2022-49562",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49562"
},
{
"name": "CVE-2022-49563",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49563"
},
{
"name": "CVE-2022-49564",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49564"
},
{
"name": "CVE-2022-49566",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49566"
},
{
"name": "CVE-2022-49568",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49568"
},
{
"name": "CVE-2022-49569",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49569"
},
{
"name": "CVE-2022-49570",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49570"
},
{
"name": "CVE-2022-49579",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49579"
},
{
"name": "CVE-2022-49581",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49581"
},
{
"name": "CVE-2022-49583",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49583"
},
{
"name": "CVE-2022-49584",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49584"
},
{
"name": "CVE-2022-49591",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49591"
},
{
"name": "CVE-2022-49592",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49592"
},
{
"name": "CVE-2022-49603",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49603"
},
{
"name": "CVE-2022-49605",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49605"
},
{
"name": "CVE-2022-49606",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49606"
},
{
"name": "CVE-2022-49607",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49607"
},
{
"name": "CVE-2022-49609",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49609"
},
{
"name": "CVE-2022-49610",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49610"
},
{
"name": "CVE-2022-49611",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49611"
},
{
"name": "CVE-2022-49613",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49613"
},
{
"name": "CVE-2022-49615",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49615"
},
{
"name": "CVE-2022-49616",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49616"
},
{
"name": "CVE-2022-49617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49617"
},
{
"name": "CVE-2022-49618",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49618"
},
{
"name": "CVE-2022-49621",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49621"
},
{
"name": "CVE-2022-49623",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49623"
},
{
"name": "CVE-2022-49625",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49625"
},
{
"name": "CVE-2022-49627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49627"
},
{
"name": "CVE-2022-49628",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49628"
},
{
"name": "CVE-2022-49631",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49631"
},
{
"name": "CVE-2022-49634",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49634"
},
{
"name": "CVE-2022-49640",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49640"
},
{
"name": "CVE-2022-49641",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49641"
},
{
"name": "CVE-2022-49642",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49642"
},
{
"name": "CVE-2022-49643",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49643"
},
{
"name": "CVE-2022-49644",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49644"
},
{
"name": "CVE-2022-49645",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49645"
},
{
"name": "CVE-2022-49646",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49646"
},
{
"name": "CVE-2022-49647",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49647"
},
{
"name": "CVE-2022-49648",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49648"
},
{
"name": "CVE-2022-49649",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49649"
},
{
"name": "CVE-2022-49652",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49652"
},
{
"name": "CVE-2022-49653",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49653"
},
{
"name": "CVE-2022-49656",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49656"
},
{
"name": "CVE-2022-49657",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49657"
},
{
"name": "CVE-2022-49663",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49663"
},
{
"name": "CVE-2022-49665",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49665"
},
{
"name": "CVE-2022-49667",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49667"
},
{
"name": "CVE-2022-49668",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49668"
},
{
"name": "CVE-2022-49670",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49670"
},
{
"name": "CVE-2022-49671",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49671"
},
{
"name": "CVE-2022-49672",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49672"
},
{
"name": "CVE-2022-49673",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49673"
},
{
"name": "CVE-2022-49674",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49674"
},
{
"name": "CVE-2022-49675",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49675"
},
{
"name": "CVE-2022-49676",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49676"
},
{
"name": "CVE-2022-49677",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49677"
},
{
"name": "CVE-2022-49678",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49678"
},
{
"name": "CVE-2022-49679",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49679"
},
{
"name": "CVE-2022-49680",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49680"
},
{
"name": "CVE-2022-49683",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49683"
},
{
"name": "CVE-2022-49685",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49685"
},
{
"name": "CVE-2022-49687",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49687"
},
{
"name": "CVE-2022-49688",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49688"
},
{
"name": "CVE-2022-49693",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49693"
},
{
"name": "CVE-2022-49695",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49695"
},
{
"name": "CVE-2022-49699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49699"
},
{
"name": "CVE-2022-49700",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49700"
},
{
"name": "CVE-2022-49701",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49701"
},
{
"name": "CVE-2022-49703",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49703"
},
{
"name": "CVE-2022-49704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49704"
},
{
"name": "CVE-2022-49705",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49705"
},
{
"name": "CVE-2022-49707",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49707"
},
{
"name": "CVE-2022-49708",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49708"
},
{
"name": "CVE-2022-49710",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49710"
},
{
"name": "CVE-2022-49711",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49711"
},
{
"name": "CVE-2022-49712",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49712"
},
{
"name": "CVE-2022-49713",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49713"
},
{
"name": "CVE-2022-49714",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49714"
},
{
"name": "CVE-2022-49715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49715"
},
{
"name": "CVE-2022-49716",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49716"
},
{
"name": "CVE-2022-49719",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49719"
},
{
"name": "CVE-2022-49720",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49720"
},
{
"name": "CVE-2022-49721",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49721"
},
{
"name": "CVE-2022-49722",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49722"
},
{
"name": "CVE-2022-49723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49723"
},
{
"name": "CVE-2022-49724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49724"
},
{
"name": "CVE-2022-49725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49725"
},
{
"name": "CVE-2022-49726",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49726"
},
{
"name": "CVE-2022-49729",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49729"
},
{
"name": "CVE-2022-49730",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49730"
},
{
"name": "CVE-2022-49731",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49731"
},
{
"name": "CVE-2022-49733",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49733"
},
{
"name": "CVE-2024-57996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57996"
},
{
"name": "CVE-2024-58014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58014"
},
{
"name": "CVE-2025-21718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21718"
},
{
"name": "CVE-2025-21772",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21772"
},
{
"name": "CVE-2025-21780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21780"
},
{
"name": "CVE-2025-21785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21785"
},
{
"name": "CVE-2024-47794",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47794"
},
{
"name": "CVE-2024-54683",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54683"
},
{
"name": "CVE-2024-56638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56638"
},
{
"name": "CVE-2024-56719",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56719"
},
{
"name": "CVE-2024-56758",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56758"
},
{
"name": "CVE-2025-21635",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21635"
},
{
"name": "CVE-2025-21659",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21659"
},
{
"name": "CVE-2024-57834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57834"
},
{
"name": "CVE-2024-57973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57973"
},
{
"name": "CVE-2024-57978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57978"
},
{
"name": "CVE-2024-57980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57980"
},
{
"name": "CVE-2024-57981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57981"
},
{
"name": "CVE-2024-57986",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57986"
},
{
"name": "CVE-2024-57993",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57993"
},
{
"name": "CVE-2024-57997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57997"
},
{
"name": "CVE-2024-58007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58007"
},
{
"name": "CVE-2024-58009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58009"
},
{
"name": "CVE-2024-58011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58011"
},
{
"name": "CVE-2024-58013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58013"
},
{
"name": "CVE-2024-58017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58017"
},
{
"name": "CVE-2024-58020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58020"
},
{
"name": "CVE-2024-58034",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58034"
},
{
"name": "CVE-2024-58051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58051"
},
{
"name": "CVE-2024-58052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58052"
},
{
"name": "CVE-2024-58054",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58054"
},
{
"name": "CVE-2024-58055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58055"
},
{
"name": "CVE-2024-58056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58056"
},
{
"name": "CVE-2024-58058",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58058"
},
{
"name": "CVE-2024-58061",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58061"
},
{
"name": "CVE-2024-58063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58063"
},
{
"name": "CVE-2024-58069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58069"
},
{
"name": "CVE-2024-58072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58072"
},
{
"name": "CVE-2024-58076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58076"
},
{
"name": "CVE-2024-58080",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58080"
},
{
"name": "CVE-2024-58083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58083"
},
{
"name": "CVE-2024-58085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58085"
},
{
"name": "CVE-2024-58086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58086"
},
{
"name": "CVE-2025-21701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21701"
},
{
"name": "CVE-2025-21703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21703"
},
{
"name": "CVE-2025-21704",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21704"
},
{
"name": "CVE-2025-21706",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21706"
},
{
"name": "CVE-2025-21708",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21708"
},
{
"name": "CVE-2025-21711",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21711"
},
{
"name": "CVE-2025-21726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21726"
},
{
"name": "CVE-2025-21727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21727"
},
{
"name": "CVE-2025-21731",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21731"
},
{
"name": "CVE-2025-21734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21734"
},
{
"name": "CVE-2025-21735",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21735"
},
{
"name": "CVE-2025-21736",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21736"
},
{
"name": "CVE-2025-21738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21738"
},
{
"name": "CVE-2025-21744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21744"
},
{
"name": "CVE-2025-21745",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21745"
},
{
"name": "CVE-2025-21749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21749"
},
{
"name": "CVE-2025-21750",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21750"
},
{
"name": "CVE-2025-21760",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21760"
},
{
"name": "CVE-2025-21761",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21761"
},
{
"name": "CVE-2025-21762",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21762"
},
{
"name": "CVE-2025-21763",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21763"
},
{
"name": "CVE-2025-21764",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21764"
},
{
"name": "CVE-2025-21765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21765"
},
{
"name": "CVE-2025-21766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21766"
},
{
"name": "CVE-2025-21775",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21775"
},
{
"name": "CVE-2025-21776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21776"
},
{
"name": "CVE-2025-21779",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21779"
},
{
"name": "CVE-2025-21781",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21781"
},
{
"name": "CVE-2025-21782",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21782"
},
{
"name": "CVE-2025-21791",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21791"
},
{
"name": "CVE-2025-21794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21794"
},
{
"name": "CVE-2025-21796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21796"
},
{
"name": "CVE-2025-21804",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21804"
},
{
"name": "CVE-2025-21819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21819"
},
{
"name": "CVE-2025-21820",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21820"
},
{
"name": "CVE-2025-21821",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21821"
},
{
"name": "CVE-2025-21823",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21823"
},
{
"name": "CVE-2025-21829",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21829"
},
{
"name": "CVE-2025-21830",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21830"
},
{
"name": "CVE-2025-21832",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21832"
},
{
"name": "CVE-2025-21835",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21835"
},
{
"name": "CVE-2021-4454",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4454"
},
{
"name": "CVE-2022-49053",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49053"
},
{
"name": "CVE-2022-49056",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49056"
},
{
"name": "CVE-2022-49057",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49057"
},
{
"name": "CVE-2022-49062",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49062"
},
{
"name": "CVE-2022-49064",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49064"
},
{
"name": "CVE-2022-49070",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49070"
},
{
"name": "CVE-2022-49071",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49071"
},
{
"name": "CVE-2022-49075",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49075"
},
{
"name": "CVE-2022-49123",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49123"
},
{
"name": "CVE-2022-49125",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49125"
},
{
"name": "CVE-2022-49133",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49133"
},
{
"name": "CVE-2022-49136",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49136"
},
{
"name": "CVE-2022-49138",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49138"
},
{
"name": "CVE-2022-49139",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49139"
},
{
"name": "CVE-2022-49144",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49144"
},
{
"name": "CVE-2022-49183",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49183"
},
{
"name": "CVE-2022-49192",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49192"
},
{
"name": "CVE-2022-49202",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49202"
},
{
"name": "CVE-2022-49203",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49203"
},
{
"name": "CVE-2022-49204",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49204"
},
{
"name": "CVE-2022-49205",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49205"
},
{
"name": "CVE-2022-49207",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49207"
},
{
"name": "CVE-2022-49209",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49209"
},
{
"name": "CVE-2022-49215",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49215"
},
{
"name": "CVE-2022-49219",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49219"
},
{
"name": "CVE-2022-49225",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49225"
},
{
"name": "CVE-2022-49228",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49228"
},
{
"name": "CVE-2022-49230",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49230"
},
{
"name": "CVE-2022-49233",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49233"
},
{
"name": "CVE-2022-49237",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49237"
},
{
"name": "CVE-2022-49238",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49238"
},
{
"name": "CVE-2022-49293",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49293"
},
{
"name": "CVE-2022-49296",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49296"
},
{
"name": "CVE-2022-49306",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49306"
},
{
"name": "CVE-2022-49325",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49325"
},
{
"name": "CVE-2022-49329",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49329"
},
{
"name": "CVE-2022-49330",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49330"
},
{
"name": "CVE-2022-49333",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49333"
},
{
"name": "CVE-2022-49338",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49338"
},
{
"name": "CVE-2022-49353",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49353"
},
{
"name": "CVE-2022-49359",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49359"
},
{
"name": "CVE-2022-49362",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49362"
},
{
"name": "CVE-2022-49365",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49365"
},
{
"name": "CVE-2022-49390",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49390"
},
{
"name": "CVE-2022-49406",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49406"
},
{
"name": "CVE-2022-49419",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49419"
},
{
"name": "CVE-2022-49436",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49436"
},
{
"name": "CVE-2022-49446",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49446"
},
{
"name": "CVE-2022-49458",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49458"
},
{
"name": "CVE-2022-49465",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49465"
},
{
"name": "CVE-2022-49470",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49470"
},
{
"name": "CVE-2022-49476",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49476"
},
{
"name": "CVE-2022-49479",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49479"
},
{
"name": "CVE-2022-49483",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49483"
},
{
"name": "CVE-2022-49484",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49484"
},
{
"name": "CVE-2022-49485",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49485"
},
{
"name": "CVE-2022-49497",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49497"
},
{
"name": "CVE-2022-49499",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49499"
},
{
"name": "CVE-2022-49510",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49510"
},
{
"name": "CVE-2022-49511",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49511"
},
{
"name": "CVE-2022-49516",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49516"
},
{
"name": "CVE-2022-49518",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49518"
},
{
"name": "CVE-2022-49529",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49529"
},
{
"name": "CVE-2022-49530",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49530"
},
{
"name": "CVE-2022-49533",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49533"
},
{
"name": "CVE-2022-49538",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49538"
},
{
"name": "CVE-2022-49543",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49543"
},
{
"name": "CVE-2022-49548",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49548"
},
{
"name": "CVE-2022-49552",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49552"
},
{
"name": "CVE-2022-49560",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49560"
},
{
"name": "CVE-2022-49565",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49565"
},
{
"name": "CVE-2022-49624",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49624"
},
{
"name": "CVE-2022-49635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49635"
},
{
"name": "CVE-2022-49638",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49638"
},
{
"name": "CVE-2022-49650",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49650"
},
{
"name": "CVE-2022-49655",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49655"
},
{
"name": "CVE-2022-49658",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49658"
},
{
"name": "CVE-2022-49686",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49686"
},
{
"name": "CVE-2022-49694",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49694"
},
{
"name": "CVE-2022-49697",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49697"
},
{
"name": "CVE-2022-49732",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49732"
},
{
"name": "CVE-2022-49739",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49739"
},
{
"name": "CVE-2022-49746",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49746"
},
{
"name": "CVE-2022-49748",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49748"
},
{
"name": "CVE-2022-49751",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49751"
},
{
"name": "CVE-2022-49753",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49753"
},
{
"name": "CVE-2022-49755",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49755"
},
{
"name": "CVE-2022-49759",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49759"
},
{
"name": "CVE-2023-52831",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52831"
},
{
"name": "CVE-2023-52927",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52927"
},
{
"name": "CVE-2023-52930",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52930"
},
{
"name": "CVE-2023-52933",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52933"
},
{
"name": "CVE-2023-52935",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52935"
},
{
"name": "CVE-2023-52939",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52939"
},
{
"name": "CVE-2023-52941",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52941"
},
{
"name": "CVE-2023-52973",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52973"
},
{
"name": "CVE-2023-52974",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52974"
},
{
"name": "CVE-2023-52975",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52975"
},
{
"name": "CVE-2023-52976",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52976"
},
{
"name": "CVE-2023-52979",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52979"
},
{
"name": "CVE-2023-52983",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52983"
},
{
"name": "CVE-2023-52984",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52984"
},
{
"name": "CVE-2023-52988",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52988"
},
{
"name": "CVE-2023-52989",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52989"
},
{
"name": "CVE-2023-52992",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52992"
},
{
"name": "CVE-2023-52993",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52993"
},
{
"name": "CVE-2023-53000",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53000"
},
{
"name": "CVE-2023-53005",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53005"
},
{
"name": "CVE-2023-53006",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53006"
},
{
"name": "CVE-2023-53007",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53007"
},
{
"name": "CVE-2023-53008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53008"
},
{
"name": "CVE-2023-53010",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53010"
},
{
"name": "CVE-2023-53015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53015"
},
{
"name": "CVE-2023-53016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53016"
},
{
"name": "CVE-2023-53019",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53019"
},
{
"name": "CVE-2023-53023",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53023"
},
{
"name": "CVE-2023-53024",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53024"
},
{
"name": "CVE-2023-53025",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53025"
},
{
"name": "CVE-2023-53026",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53026"
},
{
"name": "CVE-2023-53028",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53028"
},
{
"name": "CVE-2023-53029",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53029"
},
{
"name": "CVE-2023-53030",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53030"
},
{
"name": "CVE-2023-53033",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53033"
},
{
"name": "CVE-2024-41149",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41149"
},
{
"name": "CVE-2024-46736",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46736"
},
{
"name": "CVE-2024-46796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46796"
},
{
"name": "CVE-2024-52559",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52559"
},
{
"name": "CVE-2024-57947",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57947"
},
{
"name": "CVE-2024-57974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57974"
},
{
"name": "CVE-2024-57990",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57990"
},
{
"name": "CVE-2024-57999",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57999"
},
{
"name": "CVE-2024-58002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58002"
},
{
"name": "CVE-2024-58005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58005"
},
{
"name": "CVE-2024-58006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58006"
},
{
"name": "CVE-2024-58012",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58012"
},
{
"name": "CVE-2024-58019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58019"
},
{
"name": "CVE-2024-58057",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58057"
},
{
"name": "CVE-2024-58078",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58078"
},
{
"name": "CVE-2024-58079",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58079"
},
{
"name": "CVE-2025-21693",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21693"
},
{
"name": "CVE-2025-21714",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21714"
},
{
"name": "CVE-2025-21723",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21723"
},
{
"name": "CVE-2025-21732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21732"
},
{
"name": "CVE-2025-21739",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21739"
},
{
"name": "CVE-2025-21741",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21741"
},
{
"name": "CVE-2025-21742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21742"
},
{
"name": "CVE-2025-21743",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21743"
},
{
"name": "CVE-2025-21756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21756"
},
{
"name": "CVE-2025-21759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21759"
},
{
"name": "CVE-2025-21773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21773"
},
{
"name": "CVE-2025-21784",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21784"
},
{
"name": "CVE-2025-21793",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21793"
},
{
"name": "CVE-2025-21810",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21810"
},
{
"name": "CVE-2025-21815",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21815"
},
{
"name": "CVE-2025-21825",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21825"
},
{
"name": "CVE-2025-21828",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21828"
},
{
"name": "CVE-2025-21831",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21831"
},
{
"name": "CVE-2025-21838",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21838"
},
{
"name": "CVE-2025-21839",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21839"
},
{
"name": "CVE-2025-21844",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21844"
},
{
"name": "CVE-2025-21846",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21846"
},
{
"name": "CVE-2025-21847",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21847"
},
{
"name": "CVE-2025-21848",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21848"
},
{
"name": "CVE-2025-21850",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21850"
},
{
"name": "CVE-2025-21855",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21855"
},
{
"name": "CVE-2025-21856",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21856"
},
{
"name": "CVE-2025-21857",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21857"
},
{
"name": "CVE-2025-21858",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21858"
},
{
"name": "CVE-2025-21859",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21859"
},
{
"name": "CVE-2025-21861",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21861"
},
{
"name": "CVE-2025-21862",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21862"
},
{
"name": "CVE-2025-21864",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21864"
},
{
"name": "CVE-2025-21865",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21865"
},
{
"name": "CVE-2025-21866",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21866"
},
{
"name": "CVE-2025-21869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21869"
},
{
"name": "CVE-2025-21870",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21870"
},
{
"name": "CVE-2025-21871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21871"
},
{
"name": "CVE-2025-21876",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21876"
},
{
"name": "CVE-2025-21877",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21877"
},
{
"name": "CVE-2025-21878",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21878"
},
{
"name": "CVE-2025-21883",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21883"
},
{
"name": "CVE-2025-21885",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21885"
},
{
"name": "CVE-2025-21886",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21886"
},
{
"name": "CVE-2025-21888",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21888"
},
{
"name": "CVE-2025-21890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21890"
},
{
"name": "CVE-2025-21891",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21891"
},
{
"name": "CVE-2025-21892",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21892"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0307",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-11T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-04-08",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1177-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251177-1"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1180-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251180-1"
},
{
"published_at": "2025-04-10",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1194-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251194-1"
},
{
"published_at": "2025-04-10",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1195-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251195-1"
},
{
"published_at": "2025-04-08",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1178-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251178-1"
},
{
"published_at": "2025-04-08",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1176-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251176-1"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1183-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251183-1"
}
]
}
CERTFR-2025-AVI-0336
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP5 | ||
| SUSE | N/A | SUSE Manager Proxy 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.3 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro for Rancher 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP3 | ||
| SUSE | N/A | openSUSE Leap 15.4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP4 | ||
| SUSE | N/A | openSUSE Leap 15.5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Availability Extension 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 Business Critical Linux | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 12-SP5 | ||
| SUSE | N/A | SUSE Manager Retail Branch Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Live Patching 15-SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.2 | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP6 | ||
| SUSE | N/A | openSUSE Leap 15.6 | ||
| SUSE | N/A | SUSE Enterprise Storage 7.1 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP5 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Real Time 15 SP4 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 | ||
| SUSE | N/A | SUSE Manager Server 4.2 | ||
| SUSE | N/A | SUSE Linux Enterprise High Performance Computing 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 12 SP5 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP3 LTSS | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.1 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.4 | ||
| SUSE | N/A | openSUSE Leap 15.3 | ||
| SUSE | N/A | SUSE Linux Enterprise Server for SAP Applications 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security | ||
| SUSE | N/A | SUSE Linux Enterprise Server 15 SP6 | ||
| SUSE | N/A | SUSE Linux Enterprise Micro 5.5 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Proxy 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro for Rancher 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Availability Extension 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 Business Critical Linux",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 12-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Retail Branch Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Live Patching 15-SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Enterprise Storage 7.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Real Time 15 SP4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Manager Server 4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise High Performance Computing 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP3 LTSS",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "openSUSE Leap 15.3",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
},
{
"description": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "N/A",
"vendor": {
"name": "SUSE",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2017-5753",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5753"
},
{
"name": "CVE-2020-27835",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27835"
},
{
"name": "CVE-2022-1016",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1016"
},
{
"name": "CVE-2022-1184",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1184"
},
{
"name": "CVE-2022-1048",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1048"
},
{
"name": "CVE-2022-26373",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26373"
},
{
"name": "CVE-2022-0168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0168"
},
{
"name": "CVE-2022-3435",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3435"
},
{
"name": "CVE-2022-29901",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29901"
},
{
"name": "CVE-2022-29900",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29900"
},
{
"name": "CVE-2022-2977",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2977"
},
{
"name": "CVE-2022-3303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3303"
},
{
"name": "CVE-2023-0179",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0179"
},
{
"name": "CVE-2023-1652",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1652"
},
{
"name": "CVE-2023-28410",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28410"
},
{
"name": "CVE-2023-2162",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2162"
},
{
"name": "CVE-2023-3567",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3567"
},
{
"name": "CVE-2021-46925",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46925"
},
{
"name": "CVE-2024-26634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26634"
},
{
"name": "CVE-2021-47248",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47248"
},
{
"name": "CVE-2024-35910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35910"
},
{
"name": "CVE-2024-38559",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38559"
},
{
"name": "CVE-2024-41005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41005"
},
{
"name": "CVE-2024-36968",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36968"
},
{
"name": "CVE-2024-41090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41090"
},
{
"name": "CVE-2021-47517",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47517"
},
{
"name": "CVE-2022-49014",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49014"
},
{
"name": "CVE-2024-49935",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49935"
},
{
"name": "CVE-2024-50269",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50269"
},
{
"name": "CVE-2024-50290",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50290"
},
{
"name": "CVE-2024-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53063"
},
{
"name": "CVE-2024-47678",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47678"
},
{
"name": "CVE-2024-53140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53140"
},
{
"name": "CVE-2024-56642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56642"
},
{
"name": "CVE-2024-56651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56651"
},
{
"name": "CVE-2024-56600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56600"
},
{
"name": "CVE-2024-53124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53124"
},
{
"name": "CVE-2024-56633",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56633"
},
{
"name": "CVE-2024-49940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49940"
},
{
"name": "CVE-2024-53176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53176"
},
{
"name": "CVE-2024-53178",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53178"
},
{
"name": "CVE-2024-49571",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49571"
},
{
"name": "CVE-2024-53680",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53680"
},
{
"name": "CVE-2024-56640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56640"
},
{
"name": "CVE-2024-56770",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56770"
},
{
"name": "CVE-2024-57900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57900"
},
{
"name": "CVE-2021-47633",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47633"
},
{
"name": "CVE-2021-47644",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47644"
},
{
"name": "CVE-2022-49076",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49076"
},
{
"name": "CVE-2022-49089",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49089"
},
{
"name": "CVE-2022-49134",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49134"
},
{
"name": "CVE-2022-49135",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49135"
},
{
"name": "CVE-2022-49151",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49151"
},
{
"name": "CVE-2022-49178",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49178"
},
{
"name": "CVE-2022-49182",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49182"
},
{
"name": "CVE-2022-49201",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49201"
},
{
"name": "CVE-2022-49247",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49247"
},
{
"name": "CVE-2022-49490",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49490"
},
{
"name": "CVE-2022-49626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49626"
},
{
"name": "CVE-2022-49661",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49661"
},
{
"name": "CVE-2024-57979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57979"
},
{
"name": "CVE-2025-21802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21802"
},
{
"name": "CVE-2021-4453",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4453"
},
{
"name": "CVE-2021-47631",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47631"
},
{
"name": "CVE-2021-47632",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47632"
},
{
"name": "CVE-2021-47635",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47635"
},
{
"name": "CVE-2021-47636",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47636"
},
{
"name": "CVE-2021-47637",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47637"
},
{
"name": "CVE-2021-47638",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47638"
},
{
"name": "CVE-2021-47639",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47639"
},
{
"name": "CVE-2021-47641",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47641"
},
{
"name": "CVE-2021-47642",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47642"
},
{
"name": "CVE-2021-47643",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47643"
},
{
"name": "CVE-2021-47645",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47645"
},
{
"name": "CVE-2021-47646",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47646"
},
{
"name": "CVE-2021-47647",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47647"
},
{
"name": "CVE-2021-47648",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47648"
},
{
"name": "CVE-2021-47649",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47649"
},
{
"name": "CVE-2021-47650",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47650"
},
{
"name": "CVE-2021-47651",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47651"
},
{
"name": "CVE-2021-47652",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47652"
},
{
"name": "CVE-2021-47653",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47653"
},
{
"name": "CVE-2021-47654",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47654"
},
{
"name": "CVE-2021-47656",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47656"
},
{
"name": "CVE-2021-47657",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47657"
},
{
"name": "CVE-2021-47659",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47659"
},
{
"name": "CVE-2022-0995",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0995"
},
{
"name": "CVE-2022-49044",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49044"
},
{
"name": "CVE-2022-49050",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49050"
},
{
"name": "CVE-2022-49051",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49051"
},
{
"name": "CVE-2022-49054",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49054"
},
{
"name": "CVE-2022-49055",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49055"
},
{
"name": "CVE-2022-49058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49058"
},
{
"name": "CVE-2022-49059",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49059"
},
{
"name": "CVE-2022-49060",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49060"
},
{
"name": "CVE-2022-49061",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49061"
},
{
"name": "CVE-2022-49063",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49063"
},
{
"name": "CVE-2022-49065",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49065"
},
{
"name": "CVE-2022-49066",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49066"
},
{
"name": "CVE-2022-49073",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49073"
},
{
"name": "CVE-2022-49074",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49074"
},
{
"name": "CVE-2022-49078",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49078"
},
{
"name": "CVE-2022-49082",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49082"
},
{
"name": "CVE-2022-49083",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49083"
},
{
"name": "CVE-2022-49084",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49084"
},
{
"name": "CVE-2022-49085",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49085"
},
{
"name": "CVE-2022-49086",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49086"
},
{
"name": "CVE-2022-49088",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49088"
},
{
"name": "CVE-2022-49090",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49090"
},
{
"name": "CVE-2022-49091",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49091"
},
{
"name": "CVE-2022-49092",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49092"
},
{
"name": "CVE-2022-49093",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49093"
},
{
"name": "CVE-2022-49095",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49095"
},
{
"name": "CVE-2022-49096",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49096"
},
{
"name": "CVE-2022-49097",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49097"
},
{
"name": "CVE-2022-49098",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49098"
},
{
"name": "CVE-2022-49099",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49099"
},
{
"name": "CVE-2022-49100",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49100"
},
{
"name": "CVE-2022-49102",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49102"
},
{
"name": "CVE-2022-49103",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49103"
},
{
"name": "CVE-2022-49104",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49104"
},
{
"name": "CVE-2022-49105",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49105"
},
{
"name": "CVE-2022-49106",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49106"
},
{
"name": "CVE-2022-49107",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49107"
},
{
"name": "CVE-2022-49109",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49109"
},
{
"name": "CVE-2022-49111",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49111"
},
{
"name": "CVE-2022-49112",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49112"
},
{
"name": "CVE-2022-49113",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49113"
},
{
"name": "CVE-2022-49114",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49114"
},
{
"name": "CVE-2022-49115",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49115"
},
{
"name": "CVE-2022-49116",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49116"
},
{
"name": "CVE-2022-49118",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49118"
},
{
"name": "CVE-2022-49119",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49119"
},
{
"name": "CVE-2022-49120",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49120"
},
{
"name": "CVE-2022-49121",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49121"
},
{
"name": "CVE-2022-49122",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49122"
},
{
"name": "CVE-2022-49126",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49126"
},
{
"name": "CVE-2022-49128",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49128"
},
{
"name": "CVE-2022-49129",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49129"
},
{
"name": "CVE-2022-49130",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49130"
},
{
"name": "CVE-2022-49131",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49131"
},
{
"name": "CVE-2022-49132",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49132"
},
{
"name": "CVE-2022-49137",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49137"
},
{
"name": "CVE-2022-49145",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49145"
},
{
"name": "CVE-2022-49147",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49147"
},
{
"name": "CVE-2022-49148",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49148"
},
{
"name": "CVE-2022-49153",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49153"
},
{
"name": "CVE-2022-49154",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49154"
},
{
"name": "CVE-2022-49155",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49155"
},
{
"name": "CVE-2022-49156",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49156"
},
{
"name": "CVE-2022-49157",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49157"
},
{
"name": "CVE-2022-49158",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49158"
},
{
"name": "CVE-2022-49159",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49159"
},
{
"name": "CVE-2022-49160",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49160"
},
{
"name": "CVE-2022-49162",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49162"
},
{
"name": "CVE-2022-49163",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49163"
},
{
"name": "CVE-2022-49164",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49164"
},
{
"name": "CVE-2022-49165",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49165"
},
{
"name": "CVE-2022-49174",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49174"
},
{
"name": "CVE-2022-49175",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49175"
},
{
"name": "CVE-2022-49176",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49176"
},
{
"name": "CVE-2022-49177",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49177"
},
{
"name": "CVE-2022-49179",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49179"
},
{
"name": "CVE-2022-49180",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49180"
},
{
"name": "CVE-2022-49185",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49185"
},
{
"name": "CVE-2022-49187",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49187"
},
{
"name": "CVE-2022-49188",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49188"
},
{
"name": "CVE-2022-49189",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49189"
},
{
"name": "CVE-2022-49193",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49193"
},
{
"name": "CVE-2022-49194",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49194"
},
{
"name": "CVE-2022-49196",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49196"
},
{
"name": "CVE-2022-49199",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49199"
},
{
"name": "CVE-2022-49200",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49200"
},
{
"name": "CVE-2022-49206",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49206"
},
{
"name": "CVE-2022-49208",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49208"
},
{
"name": "CVE-2022-49212",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49212"
},
{
"name": "CVE-2022-49213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49213"
},
{
"name": "CVE-2022-49214",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49214"
},
{
"name": "CVE-2022-49216",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49216"
},
{
"name": "CVE-2022-49217",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49217"
},
{
"name": "CVE-2022-49218",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49218"
},
{
"name": "CVE-2022-49221",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49221"
},
{
"name": "CVE-2022-49222",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49222"
},
{
"name": "CVE-2022-49224",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49224"
},
{
"name": "CVE-2022-49226",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49226"
},
{
"name": "CVE-2022-49227",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49227"
},
{
"name": "CVE-2022-49232",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49232"
},
{
"name": "CVE-2022-49235",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49235"
},
{
"name": "CVE-2022-49236",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49236"
},
{
"name": "CVE-2022-49239",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49239"
},
{
"name": "CVE-2022-49241",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49241"
},
{
"name": "CVE-2022-49242",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49242"
},
{
"name": "CVE-2022-49243",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49243"
},
{
"name": "CVE-2022-49244",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49244"
},
{
"name": "CVE-2022-49246",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49246"
},
{
"name": "CVE-2022-49248",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49248"
},
{
"name": "CVE-2022-49249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49249"
},
{
"name": "CVE-2022-49250",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49250"
},
{
"name": "CVE-2022-49251",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49251"
},
{
"name": "CVE-2022-49252",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49252"
},
{
"name": "CVE-2022-49253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49253"
},
{
"name": "CVE-2022-49254",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49254"
},
{
"name": "CVE-2022-49256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49256"
},
{
"name": "CVE-2022-49257",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49257"
},
{
"name": "CVE-2022-49258",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49258"
},
{
"name": "CVE-2022-49259",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49259"
},
{
"name": "CVE-2022-49260",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49260"
},
{
"name": "CVE-2022-49261",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49261"
},
{
"name": "CVE-2022-49262",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49262"
},
{
"name": "CVE-2022-49263",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49263"
},
{
"name": "CVE-2022-49264",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49264"
},
{
"name": "CVE-2022-49265",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49265"
},
{
"name": "CVE-2022-49266",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49266"
},
{
"name": "CVE-2022-49268",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49268"
},
{
"name": "CVE-2022-49269",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49269"
},
{
"name": "CVE-2022-49270",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49270"
},
{
"name": "CVE-2022-49271",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49271"
},
{
"name": "CVE-2022-49272",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49272"
},
{
"name": "CVE-2022-49273",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49273"
},
{
"name": "CVE-2022-49274",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49274"
},
{
"name": "CVE-2022-49275",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49275"
},
{
"name": "CVE-2022-49276",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49276"
},
{
"name": "CVE-2022-49277",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49277"
},
{
"name": "CVE-2022-49278",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49278"
},
{
"name": "CVE-2022-49279",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49279"
},
{
"name": "CVE-2022-49280",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49280"
},
{
"name": "CVE-2022-49281",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49281"
},
{
"name": "CVE-2022-49283",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49283"
},
{
"name": "CVE-2022-49285",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49285"
},
{
"name": "CVE-2022-49286",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49286"
},
{
"name": "CVE-2022-49287",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49287"
},
{
"name": "CVE-2022-49288",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49288"
},
{
"name": "CVE-2022-49290",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49290"
},
{
"name": "CVE-2022-49291",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49291"
},
{
"name": "CVE-2022-49292",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49292"
},
{
"name": "CVE-2022-49294",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49294"
},
{
"name": "CVE-2022-49295",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49295"
},
{
"name": "CVE-2022-49297",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49297"
},
{
"name": "CVE-2022-49298",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49298"
},
{
"name": "CVE-2022-49299",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49299"
},
{
"name": "CVE-2022-49300",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49300"
},
{
"name": "CVE-2022-49301",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49301"
},
{
"name": "CVE-2022-49302",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49302"
},
{
"name": "CVE-2022-49304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49304"
},
{
"name": "CVE-2022-49305",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49305"
},
{
"name": "CVE-2022-49307",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49307"
},
{
"name": "CVE-2022-49308",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49308"
},
{
"name": "CVE-2022-49309",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49309"
},
{
"name": "CVE-2022-49310",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49310"
},
{
"name": "CVE-2022-49311",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49311"
},
{
"name": "CVE-2022-49312",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49312"
},
{
"name": "CVE-2022-49313",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49313"
},
{
"name": "CVE-2022-49314",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49314"
},
{
"name": "CVE-2022-49315",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49315"
},
{
"name": "CVE-2022-49316",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49316"
},
{
"name": "CVE-2022-49319",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49319"
},
{
"name": "CVE-2022-49320",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49320"
},
{
"name": "CVE-2022-49321",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49321"
},
{
"name": "CVE-2022-49322",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49322"
},
{
"name": "CVE-2022-49323",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49323"
},
{
"name": "CVE-2022-49326",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49326"
},
{
"name": "CVE-2022-49327",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49327"
},
{
"name": "CVE-2022-49328",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49328"
},
{
"name": "CVE-2022-49331",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49331"
},
{
"name": "CVE-2022-49332",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49332"
},
{
"name": "CVE-2022-49335",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49335"
},
{
"name": "CVE-2022-49336",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49336"
},
{
"name": "CVE-2022-49337",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49337"
},
{
"name": "CVE-2022-49339",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49339"
},
{
"name": "CVE-2022-49341",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49341"
},
{
"name": "CVE-2022-49342",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49342"
},
{
"name": "CVE-2022-49343",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49343"
},
{
"name": "CVE-2022-49345",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49345"
},
{
"name": "CVE-2022-49346",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49346"
},
{
"name": "CVE-2022-49347",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49347"
},
{
"name": "CVE-2022-49348",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49348"
},
{
"name": "CVE-2022-49349",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49349"
},
{
"name": "CVE-2022-49350",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49350"
},
{
"name": "CVE-2022-49351",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49351"
},
{
"name": "CVE-2022-49352",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49352"
},
{
"name": "CVE-2022-49354",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49354"
},
{
"name": "CVE-2022-49356",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49356"
},
{
"name": "CVE-2022-49357",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49357"
},
{
"name": "CVE-2022-49367",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49367"
},
{
"name": "CVE-2022-49368",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49368"
},
{
"name": "CVE-2022-49370",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49370"
},
{
"name": "CVE-2022-49371",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49371"
},
{
"name": "CVE-2022-49373",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49373"
},
{
"name": "CVE-2022-49375",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49375"
},
{
"name": "CVE-2022-49376",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49376"
},
{
"name": "CVE-2022-49377",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49377"
},
{
"name": "CVE-2022-49378",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49378"
},
{
"name": "CVE-2022-49379",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49379"
},
{
"name": "CVE-2022-49381",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49381"
},
{
"name": "CVE-2022-49382",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49382"
},
{
"name": "CVE-2022-49384",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49384"
},
{
"name": "CVE-2022-49385",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49385"
},
{
"name": "CVE-2022-49386",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49386"
},
{
"name": "CVE-2022-49389",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49389"
},
{
"name": "CVE-2022-49392",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49392"
},
{
"name": "CVE-2022-49394",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49394"
},
{
"name": "CVE-2022-49396",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49396"
},
{
"name": "CVE-2022-49397",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49397"
},
{
"name": "CVE-2022-49398",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49398"
},
{
"name": "CVE-2022-49399",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49399"
},
{
"name": "CVE-2022-49400",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49400"
},
{
"name": "CVE-2022-49402",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49402"
},
{
"name": "CVE-2022-49404",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49404"
},
{
"name": "CVE-2022-49407",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49407"
},
{
"name": "CVE-2022-49409",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49409"
},
{
"name": "CVE-2022-49410",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49410"
},
{
"name": "CVE-2022-49411",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49411"
},
{
"name": "CVE-2022-49412",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49412"
},
{
"name": "CVE-2022-49413",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49413"
},
{
"name": "CVE-2022-49414",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49414"
},
{
"name": "CVE-2022-49416",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49416"
},
{
"name": "CVE-2022-49418",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49418"
},
{
"name": "CVE-2022-49421",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49421"
},
{
"name": "CVE-2022-49422",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49422"
},
{
"name": "CVE-2022-49424",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49424"
},
{
"name": "CVE-2022-49426",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49426"
},
{
"name": "CVE-2022-49427",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49427"
},
{
"name": "CVE-2022-49429",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49429"
},
{
"name": "CVE-2022-49430",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49430"
},
{
"name": "CVE-2022-49431",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49431"
},
{
"name": "CVE-2022-49432",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49432"
},
{
"name": "CVE-2022-49433",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49433"
},
{
"name": "CVE-2022-49434",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49434"
},
{
"name": "CVE-2022-49435",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49435"
},
{
"name": "CVE-2022-49437",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49437"
},
{
"name": "CVE-2022-49438",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49438"
},
{
"name": "CVE-2022-49440",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49440"
},
{
"name": "CVE-2022-49441",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49441"
},
{
"name": "CVE-2022-49442",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49442"
},
{
"name": "CVE-2022-49443",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49443"
},
{
"name": "CVE-2022-49444",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49444"
},
{
"name": "CVE-2022-49445",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49445"
},
{
"name": "CVE-2022-49447",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49447"
},
{
"name": "CVE-2022-49448",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49448"
},
{
"name": "CVE-2022-49449",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49449"
},
{
"name": "CVE-2022-49451",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49451"
},
{
"name": "CVE-2022-49453",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49453"
},
{
"name": "CVE-2022-49455",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49455"
},
{
"name": "CVE-2022-49459",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49459"
},
{
"name": "CVE-2022-49460",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49460"
},
{
"name": "CVE-2022-49462",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49462"
},
{
"name": "CVE-2022-49463",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49463"
},
{
"name": "CVE-2022-49466",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49466"
},
{
"name": "CVE-2022-49467",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49467"
},
{
"name": "CVE-2022-49468",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49468"
},
{
"name": "CVE-2022-49472",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49472"
},
{
"name": "CVE-2022-49473",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49473"
},
{
"name": "CVE-2022-49474",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49474"
},
{
"name": "CVE-2022-49475",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49475"
},
{
"name": "CVE-2022-49477",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49477"
},
{
"name": "CVE-2022-49478",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49478"
},
{
"name": "CVE-2022-49480",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49480"
},
{
"name": "CVE-2022-49481",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49481"
},
{
"name": "CVE-2022-49482",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49482"
},
{
"name": "CVE-2022-49486",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49486"
},
{
"name": "CVE-2022-49487",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49487"
},
{
"name": "CVE-2022-49488",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49488"
},
{
"name": "CVE-2022-49489",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49489"
},
{
"name": "CVE-2022-49491",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49491"
},
{
"name": "CVE-2022-49492",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49492"
},
{
"name": "CVE-2022-49493",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49493"
},
{
"name": "CVE-2022-49494",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49494"
},
{
"name": "CVE-2022-49495",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49495"
},
{
"name": "CVE-2022-49498",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49498"
},
{
"name": "CVE-2022-49501",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49501"
},
{
"name": "CVE-2022-49502",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49502"
},
{
"name": "CVE-2022-49503",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49503"
},
{
"name": "CVE-2022-49504",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49504"
},
{
"name": "CVE-2022-49505",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49505"
},
{
"name": "CVE-2022-49506",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49506"
},
{
"name": "CVE-2022-49507",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49507"
},
{
"name": "CVE-2022-49508",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49508"
},
{
"name": "CVE-2022-49509",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49509"
},
{
"name": "CVE-2022-49512",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49512"
},
{
"name": "CVE-2022-49514",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49514"
},
{
"name": "CVE-2022-49515",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49515"
},
{
"name": "CVE-2022-49517",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49517"
},
{
"name": "CVE-2022-49519",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49519"
},
{
"name": "CVE-2022-49520",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49520"
},
{
"name": "CVE-2022-49521",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49521"
},
{
"name": "CVE-2022-49522",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49522"
},
{
"name": "CVE-2022-49523",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49523"
},
{
"name": "CVE-2022-49524",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49524"
},
{
"name": "CVE-2022-49525",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49525"
},
{
"name": "CVE-2022-49526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49526"
},
{
"name": "CVE-2022-49527",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49527"
},
{
"name": "CVE-2022-49532",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49532"
},
{
"name": "CVE-2022-49534",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49534"
},
{
"name": "CVE-2022-49535",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49535"
},
{
"name": "CVE-2022-49536",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49536"
},
{
"name": "CVE-2022-49537",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49537"
},
{
"name": "CVE-2022-49541",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49541"
},
{
"name": "CVE-2022-49542",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49542"
},
{
"name": "CVE-2022-49544",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49544"
},
{
"name": "CVE-2022-49545",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49545"
},
{
"name": "CVE-2022-49546",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49546"
},
{
"name": "CVE-2022-49549",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49549"
},
{
"name": "CVE-2022-49551",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49551"
},
{
"name": "CVE-2022-49555",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49555"
},
{
"name": "CVE-2022-49556",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49556"
},
{
"name": "CVE-2022-49559",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49559"
},
{
"name": "CVE-2022-49562",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49562"
},
{
"name": "CVE-2022-49563",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49563"
},
{
"name": "CVE-2022-49564",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49564"
},
{
"name": "CVE-2022-49566",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49566"
},
{
"name": "CVE-2022-49568",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49568"
},
{
"name": "CVE-2022-49569",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49569"
},
{
"name": "CVE-2022-49570",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49570"
},
{
"name": "CVE-2022-49579",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49579"
},
{
"name": "CVE-2022-49581",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49581"
},
{
"name": "CVE-2022-49583",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49583"
},
{
"name": "CVE-2022-49584",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49584"
},
{
"name": "CVE-2022-49591",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49591"
},
{
"name": "CVE-2022-49592",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49592"
},
{
"name": "CVE-2022-49603",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49603"
},
{
"name": "CVE-2022-49605",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49605"
},
{
"name": "CVE-2022-49606",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49606"
},
{
"name": "CVE-2022-49607",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49607"
},
{
"name": "CVE-2022-49609",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49609"
},
{
"name": "CVE-2022-49610",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49610"
},
{
"name": "CVE-2022-49611",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49611"
},
{
"name": "CVE-2022-49613",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49613"
},
{
"name": "CVE-2022-49615",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49615"
},
{
"name": "CVE-2022-49616",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49616"
},
{
"name": "CVE-2022-49617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49617"
},
{
"name": "CVE-2022-49618",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49618"
},
{
"name": "CVE-2022-49621",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49621"
},
{
"name": "CVE-2022-49623",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49623"
},
{
"name": "CVE-2022-49625",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49625"
},
{
"name": "CVE-2022-49627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49627"
},
{
"name": "CVE-2022-49628",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49628"
},
{
"name": "CVE-2022-49631",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49631"
},
{
"name": "CVE-2022-49634",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49634"
},
{
"name": "CVE-2022-49640",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49640"
},
{
"name": "CVE-2022-49641",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49641"
},
{
"name": "CVE-2022-49642",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49642"
},
{
"name": "CVE-2022-49643",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49643"
},
{
"name": "CVE-2022-49644",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49644"
},
{
"name": "CVE-2022-49645",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49645"
},
{
"name": "CVE-2022-49646",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49646"
},
{
"name": "CVE-2022-49647",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49647"
},
{
"name": "CVE-2022-49648",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49648"
},
{
"name": "CVE-2022-49649",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49649"
},
{
"name": "CVE-2022-49652",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49652"
},
{
"name": "CVE-2022-49653",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49653"
},
{
"name": "CVE-2022-49656",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49656"
},
{
"name": "CVE-2022-49657",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49657"
},
{
"name": "CVE-2022-49663",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49663"
},
{
"name": "CVE-2022-49665",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49665"
},
{
"name": "CVE-2022-49667",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49667"
},
{
"name": "CVE-2022-49668",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49668"
},
{
"name": "CVE-2022-49670",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49670"
},
{
"name": "CVE-2022-49671",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49671"
},
{
"name": "CVE-2022-49672",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49672"
},
{
"name": "CVE-2022-49673",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49673"
},
{
"name": "CVE-2022-49674",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49674"
},
{
"name": "CVE-2022-49675",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49675"
},
{
"name": "CVE-2022-49676",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49676"
},
{
"name": "CVE-2022-49677",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49677"
},
{
"name": "CVE-2022-49678",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49678"
},
{
"name": "CVE-2022-49679",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49679"
},
{
"name": "CVE-2022-49680",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49680"
},
{
"name": "CVE-2022-49683",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49683"
},
{
"name": "CVE-2022-49685",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49685"
},
{
"name": "CVE-2022-49687",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49687"
},
{
"name": "CVE-2022-49688",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49688"
},
{
"name": "CVE-2022-49693",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49693"
},
{
"name": "CVE-2022-49695",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49695"
},
{
"name": "CVE-2022-49699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49699"
},
{
"name": "CVE-2022-49700",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49700"
},
{
"name": "CVE-2022-49701",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49701"
},
{
"name": "CVE-2022-49703",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49703"
},
{
"name": "CVE-2022-49704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49704"
},
{
"name": "CVE-2022-49705",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49705"
},
{
"name": "CVE-2022-49707",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49707"
},
{
"name": "CVE-2022-49708",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49708"
},
{
"name": "CVE-2022-49710",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49710"
},
{
"name": "CVE-2022-49711",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49711"
},
{
"name": "CVE-2022-49712",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49712"
},
{
"name": "CVE-2022-49713",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49713"
},
{
"name": "CVE-2022-49714",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49714"
},
{
"name": "CVE-2022-49715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49715"
},
{
"name": "CVE-2022-49716",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49716"
},
{
"name": "CVE-2022-49719",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49719"
},
{
"name": "CVE-2022-49720",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49720"
},
{
"name": "CVE-2022-49721",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49721"
},
{
"name": "CVE-2022-49722",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49722"
},
{
"name": "CVE-2022-49723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49723"
},
{
"name": "CVE-2022-49724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49724"
},
{
"name": "CVE-2022-49725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49725"
},
{
"name": "CVE-2022-49726",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49726"
},
{
"name": "CVE-2022-49729",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49729"
},
{
"name": "CVE-2022-49730",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49730"
},
{
"name": "CVE-2022-49731",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49731"
},
{
"name": "CVE-2022-49733",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49733"
},
{
"name": "CVE-2024-57996",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57996"
},
{
"name": "CVE-2024-58014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58014"
},
{
"name": "CVE-2025-21718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21718"
},
{
"name": "CVE-2025-21772",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21772"
},
{
"name": "CVE-2025-21780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21780"
},
{
"name": "CVE-2025-21785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21785"
},
{
"name": "CVE-2024-57973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57973"
},
{
"name": "CVE-2024-58013",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58013"
},
{
"name": "CVE-2024-58052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58052"
},
{
"name": "CVE-2024-58071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58071"
},
{
"name": "CVE-2024-58072",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58072"
},
{
"name": "CVE-2024-58083",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58083"
},
{
"name": "CVE-2025-21703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21703"
},
{
"name": "CVE-2025-21708",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21708"
},
{
"name": "CVE-2025-21744",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21744"
},
{
"name": "CVE-2025-21760",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21760"
},
{
"name": "CVE-2025-21762",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21762"
},
{
"name": "CVE-2025-21763",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21763"
},
{
"name": "CVE-2025-21765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21765"
},
{
"name": "CVE-2025-21766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21766"
},
{
"name": "CVE-2025-21776",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21776"
},
{
"name": "CVE-2025-21782",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21782"
},
{
"name": "CVE-2025-21791",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21791"
},
{
"name": "CVE-2025-21796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21796"
},
{
"name": "CVE-2025-21821",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21821"
},
{
"name": "CVE-2021-4454",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4454"
},
{
"name": "CVE-2022-49053",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49053"
},
{
"name": "CVE-2022-49056",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49056"
},
{
"name": "CVE-2022-49057",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49057"
},
{
"name": "CVE-2022-49062",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49062"
},
{
"name": "CVE-2022-49064",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49064"
},
{
"name": "CVE-2022-49070",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49070"
},
{
"name": "CVE-2022-49071",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49071"
},
{
"name": "CVE-2022-49075",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49075"
},
{
"name": "CVE-2022-49123",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49123"
},
{
"name": "CVE-2022-49125",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49125"
},
{
"name": "CVE-2022-49133",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49133"
},
{
"name": "CVE-2022-49136",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49136"
},
{
"name": "CVE-2022-49138",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49138"
},
{
"name": "CVE-2022-49139",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49139"
},
{
"name": "CVE-2022-49144",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49144"
},
{
"name": "CVE-2022-49183",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49183"
},
{
"name": "CVE-2022-49192",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49192"
},
{
"name": "CVE-2022-49202",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49202"
},
{
"name": "CVE-2022-49203",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49203"
},
{
"name": "CVE-2022-49204",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49204"
},
{
"name": "CVE-2022-49205",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49205"
},
{
"name": "CVE-2022-49207",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49207"
},
{
"name": "CVE-2022-49209",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49209"
},
{
"name": "CVE-2022-49215",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49215"
},
{
"name": "CVE-2022-49219",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49219"
},
{
"name": "CVE-2022-49225",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49225"
},
{
"name": "CVE-2022-49228",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49228"
},
{
"name": "CVE-2022-49230",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49230"
},
{
"name": "CVE-2022-49233",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49233"
},
{
"name": "CVE-2022-49237",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49237"
},
{
"name": "CVE-2022-49238",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49238"
},
{
"name": "CVE-2022-49293",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49293"
},
{
"name": "CVE-2022-49296",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49296"
},
{
"name": "CVE-2022-49306",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49306"
},
{
"name": "CVE-2022-49325",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49325"
},
{
"name": "CVE-2022-49329",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49329"
},
{
"name": "CVE-2022-49330",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49330"
},
{
"name": "CVE-2022-49333",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49333"
},
{
"name": "CVE-2022-49338",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49338"
},
{
"name": "CVE-2022-49353",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49353"
},
{
"name": "CVE-2022-49359",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49359"
},
{
"name": "CVE-2022-49362",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49362"
},
{
"name": "CVE-2022-49365",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49365"
},
{
"name": "CVE-2022-49390",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49390"
},
{
"name": "CVE-2022-49406",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49406"
},
{
"name": "CVE-2022-49419",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49419"
},
{
"name": "CVE-2022-49436",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49436"
},
{
"name": "CVE-2022-49446",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49446"
},
{
"name": "CVE-2022-49458",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49458"
},
{
"name": "CVE-2022-49465",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49465"
},
{
"name": "CVE-2022-49470",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49470"
},
{
"name": "CVE-2022-49476",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49476"
},
{
"name": "CVE-2022-49479",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49479"
},
{
"name": "CVE-2022-49483",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49483"
},
{
"name": "CVE-2022-49484",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49484"
},
{
"name": "CVE-2022-49485",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49485"
},
{
"name": "CVE-2022-49497",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49497"
},
{
"name": "CVE-2022-49499",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49499"
},
{
"name": "CVE-2022-49510",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49510"
},
{
"name": "CVE-2022-49511",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49511"
},
{
"name": "CVE-2022-49516",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49516"
},
{
"name": "CVE-2022-49518",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49518"
},
{
"name": "CVE-2022-49529",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49529"
},
{
"name": "CVE-2022-49530",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49530"
},
{
"name": "CVE-2022-49533",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49533"
},
{
"name": "CVE-2022-49538",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49538"
},
{
"name": "CVE-2022-49543",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49543"
},
{
"name": "CVE-2022-49548",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49548"
},
{
"name": "CVE-2022-49552",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49552"
},
{
"name": "CVE-2022-49560",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49560"
},
{
"name": "CVE-2022-49565",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49565"
},
{
"name": "CVE-2022-49624",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49624"
},
{
"name": "CVE-2022-49635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49635"
},
{
"name": "CVE-2022-49638",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49638"
},
{
"name": "CVE-2022-49650",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49650"
},
{
"name": "CVE-2022-49655",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49655"
},
{
"name": "CVE-2022-49658",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49658"
},
{
"name": "CVE-2022-49686",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49686"
},
{
"name": "CVE-2022-49694",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49694"
},
{
"name": "CVE-2022-49697",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49697"
},
{
"name": "CVE-2022-49732",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49732"
},
{
"name": "CVE-2022-49739",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49739"
},
{
"name": "CVE-2022-49746",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49746"
},
{
"name": "CVE-2022-49748",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49748"
},
{
"name": "CVE-2022-49751",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49751"
},
{
"name": "CVE-2022-49753",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49753"
},
{
"name": "CVE-2022-49755",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49755"
},
{
"name": "CVE-2022-49759",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49759"
},
{
"name": "CVE-2023-52930",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52930"
},
{
"name": "CVE-2023-52933",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52933"
},
{
"name": "CVE-2023-52935",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52935"
},
{
"name": "CVE-2023-52939",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52939"
},
{
"name": "CVE-2023-52941",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52941"
},
{
"name": "CVE-2023-52973",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52973"
},
{
"name": "CVE-2023-52974",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52974"
},
{
"name": "CVE-2023-52975",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52975"
},
{
"name": "CVE-2023-52976",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52976"
},
{
"name": "CVE-2023-52979",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52979"
},
{
"name": "CVE-2023-52983",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52983"
},
{
"name": "CVE-2023-52984",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52984"
},
{
"name": "CVE-2023-52988",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52988"
},
{
"name": "CVE-2023-52989",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52989"
},
{
"name": "CVE-2023-52992",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52992"
},
{
"name": "CVE-2023-52993",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52993"
},
{
"name": "CVE-2023-53000",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53000"
},
{
"name": "CVE-2023-53005",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53005"
},
{
"name": "CVE-2023-53006",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53006"
},
{
"name": "CVE-2023-53007",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53007"
},
{
"name": "CVE-2023-53008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53008"
},
{
"name": "CVE-2023-53010",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53010"
},
{
"name": "CVE-2023-53015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53015"
},
{
"name": "CVE-2023-53016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53016"
},
{
"name": "CVE-2023-53019",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53019"
},
{
"name": "CVE-2023-53023",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53023"
},
{
"name": "CVE-2023-53024",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53024"
},
{
"name": "CVE-2023-53025",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53025"
},
{
"name": "CVE-2023-53026",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53026"
},
{
"name": "CVE-2023-53028",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53028"
},
{
"name": "CVE-2023-53029",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53029"
},
{
"name": "CVE-2023-53030",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53030"
},
{
"name": "CVE-2023-53033",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53033"
},
{
"name": "CVE-2025-21693",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21693"
},
{
"name": "CVE-2025-21759",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21759"
},
{
"name": "CVE-2025-21831",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21831"
},
{
"name": "CVE-2025-21846",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21846"
},
{
"name": "CVE-2025-21848",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21848"
},
{
"name": "CVE-2025-21855",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21855"
},
{
"name": "CVE-2025-21858",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21858"
},
{
"name": "CVE-2025-21865",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21865"
},
{
"name": "CVE-2025-21871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21871"
},
{
"name": "CVE-2025-21877",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21877"
},
{
"name": "CVE-2025-21891",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21891"
},
{
"name": "CVE-2025-21916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21916"
},
{
"name": "CVE-2025-21922",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21922"
},
{
"name": "CVE-2025-21934",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21934"
},
{
"name": "CVE-2025-21935",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21935"
},
{
"name": "CVE-2025-21993",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21993"
},
{
"name": "CVE-2025-21996",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21996"
},
{
"name": "CVE-2025-22007",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22007"
},
{
"name": "CVE-2022-49046",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49046"
},
{
"name": "CVE-2022-49191",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49191"
},
{
"name": "CVE-2022-49220",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49220"
},
{
"name": "CVE-2022-49344",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49344"
},
{
"name": "CVE-2022-49372",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49372"
},
{
"name": "CVE-2022-49388",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49388"
},
{
"name": "CVE-2022-49395",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49395"
},
{
"name": "CVE-2022-49513",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49513"
},
{
"name": "CVE-2022-49578",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49578"
},
{
"name": "CVE-2022-49589",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49589"
},
{
"name": "CVE-2022-49619",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49619"
},
{
"name": "CVE-2022-49620",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49620"
},
{
"name": "CVE-2022-49727",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49727"
},
{
"name": "CVE-2022-49740",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49740"
},
{
"name": "CVE-2023-52997",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52997"
},
{
"name": "CVE-2023-53031",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53031"
},
{
"name": "CVE-2025-21969",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21969"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0336",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-18T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
"vendor_advisories": [
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1225-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251225-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1232-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251232-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1248-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251248-1"
},
{
"published_at": "2025-04-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1276-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251276-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1259-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251259-1"
},
{
"published_at": "2025-04-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1262-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251262-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1241-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251241-1"
},
{
"published_at": "2025-04-13",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1207-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251207-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1236-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251236-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1260-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251260-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1213-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251213-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1252-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251252-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1238-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251238-1"
},
{
"published_at": "2025-04-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1275-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251275-1"
},
{
"published_at": "2025-04-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1278-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251278-1"
},
{
"published_at": "2025-04-15",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1263-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251263-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1254-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251254-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1257-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251257-1"
},
{
"published_at": "2025-04-13",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1214-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251214-1"
},
{
"published_at": "2025-04-16",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1293-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251293-1"
},
{
"published_at": "2025-04-14",
"title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2025:1231-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251231-1"
}
]
}
FKIE_CVE-2022-0168
Vulnerability from fkie_nvd - Published: 2022-08-26 18:15 - Updated: 2024-11-21 06:38
Severity
Summary
A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | https://access.redhat.com/security/cve/CVE-2022-0168 | Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=2037386 | Issue Tracking, Patch, Third Party Advisory | |
| secalert@redhat.com | https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880 | Mailing List, Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/security/cve/CVE-2022-0168 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=2037386 | Issue Tracking, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880 | Mailing List, Patch, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linux | linux_kernel | * | |
| redhat | enterprise_linux | 8.0 | |
| redhat | enterprise_linux | 9.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FE93544F-B946-47CF-9697-FBF3484FCB92",
"versionEndExcluding": "5.18",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system."
},
{
"lang": "es",
"value": "Se encontr\u00f3 un problema de denegaci\u00f3n de servicio (DOS) en la funci\u00f3n smb2_ioctl_query_info del kernel de Linux en el archivo fs/cifs/smb2ops.c Common Internet File System (CIFS) debido a un retorno incorrecto de la funci\u00f3n memdup_user. Este fallo permite a un atacante local privilegiado (CAP_SYS_ADMIN) bloquear el sistema."
}
],
"id": "CVE-2022-0168",
"lastModified": "2024-11-21T06:38:03.603",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-08-26T18:15:08.550",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/security/cve/CVE-2022-0168"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/security/cve/CVE-2022-0168"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-476"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-476"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
GSD-2022-0168
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-0168",
"description": "A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.",
"id": "GSD-2022-0168",
"references": [
"https://www.suse.com/security/cve/CVE-2022-0168.html",
"https://advisories.mageia.org/CVE-2022-0168.html",
"https://security.archlinux.org/CVE-2022-0168",
"https://www.debian.org/security/2022/dsa-5127",
"https://access.redhat.com/errata/RHSA-2022:7444",
"https://access.redhat.com/errata/RHSA-2022:7683",
"https://access.redhat.com/errata/RHSA-2022:7933",
"https://access.redhat.com/errata/RHSA-2022:8267"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2022-0168"
],
"details": "A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.",
"id": "GSD-2022-0168",
"modified": "2023-12-13T01:19:11.291234Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2022-0168",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "kernel",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Affects v5.4\u20135.12, v5.13-rc+HEAD"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-476",
"lang": "eng",
"value": "CWE-476 - NULL Pointer Dereference"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386"
},
{
"name": "https://access.redhat.com/security/cve/CVE-2022-0168",
"refsource": "MISC",
"url": "https://access.redhat.com/security/cve/CVE-2022-0168"
},
{
"name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880",
"refsource": "MISC",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.18",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2022-0168"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-476"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Patch",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386"
},
{
"name": "https://access.redhat.com/security/cve/CVE-2022-0168",
"refsource": "MISC",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/security/cve/CVE-2022-0168"
},
{
"name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880",
"refsource": "MISC",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d6f5e358452479fa8a773b5c6ccc9e4ec5a20880"
}
]
}
},
"impact": {
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2023-02-12T22:15Z",
"publishedDate": "2022-08-26T18:15Z"
}
}
}
MSRC_CVE-2022-0168
Vulnerability from csaf_microsoft - Published: 2022-08-02 00:00 - Updated: 2022-09-03 00:00Summary
A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local privileged (CAP_SYS_ADMIN) attacker to crash the system.
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
4.4 (Medium)
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 18638-16820 | — | ||
| Unresolved product id: 18617-17086 | — |
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2022/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2022/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2022-0168 A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local privileged (CAP_SYS_ADMIN) attacker to crash the system. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2022/msrc_cve-2022-0168.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local privileged (CAP_SYS_ADMIN) attacker to crash the system.",
"tracking": {
"current_release_date": "2022-09-03T00:00:00.000Z",
"generator": {
"date": "2025-10-19T23:51:07.208Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2022-0168",
"initial_release_date": "2022-08-02T00:00:00.000Z",
"revision_history": [
{
"date": "2022-09-03T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "1.0",
"product": {
"name": "CBL Mariner 1.0",
"product_id": "16820"
}
},
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccm1 kernel 5.10.134.1-2",
"product": {
"name": "\u003ccm1 kernel 5.10.134.1-2",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cm1 kernel 5.10.134.1-2",
"product": {
"name": "cm1 kernel 5.10.134.1-2",
"product_id": "18638"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 kernel 5.15.67.1-4",
"product": {
"name": "\u003ccbl2 kernel 5.15.67.1-4",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "cbl2 kernel 5.15.67.1-4",
"product": {
"name": "cbl2 kernel 5.15.67.1-4",
"product_id": "18617"
}
}
],
"category": "product_name",
"name": "kernel"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccm1 kernel 5.10.134.1-2 as a component of CBL Mariner 1.0",
"product_id": "16820-1"
},
"product_reference": "1",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cm1 kernel 5.10.134.1-2 as a component of CBL Mariner 1.0",
"product_id": "18638-16820"
},
"product_reference": "18638",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 kernel 5.15.67.1-4 as a component of CBL Mariner 2.0",
"product_id": "17086-2"
},
"product_reference": "2",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 kernel 5.15.67.1-4 as a component of CBL Mariner 2.0",
"product_id": "18617-17086"
},
"product_reference": "18617",
"relates_to_product_reference": "17086"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-0168",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "general",
"text": "redhat",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"18638-16820",
"18617-17086"
],
"known_affected": [
"16820-1",
"17086-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2022-0168 A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local privileged (CAP_SYS_ADMIN) attacker to crash the system. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2022/msrc_cve-2022-0168.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2022-09-03T00:00:00.000Z",
"details": "5.10.134.1-2:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"16820-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2022-09-03T00:00:00.000Z",
"details": "5.15.67.1-4:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"temporalScore": 4.4,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"16820-1",
"17086-2"
]
}
],
"title": "A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local privileged (CAP_SYS_ADMIN) attacker to crash the system."
}
]
}
OPENSUSE-SU-2022:2177-1
Vulnerability from csaf_opensuse - Published: 2022-06-24 11:32 - Updated: 2022-06-24 11:32Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP3 kernel was updated.
The following security bugs were fixed:
- CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019)
- CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266)
- CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507).
- CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577)
- CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063).
- CVE-2022-20008: Fixed bug that allows to read kernel heap memory due to uninitialized data in mmc_blk_read_single of block.c. (bnc#1199564)
- CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505).
- CVE-2022-0168: Fixed a NULL pointer dereference in smb2_ioctl_query_info. (bsc#1197472)
- CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426).
- CVE-2022-20141: Fixwed an use after free due to improper locking. This bug could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. (bnc#1200604)
- CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
- CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
- CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
- CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
- CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
- CVE-2022-1975: Fixed a sleep-in-atomic bug that allows attacker to crash linux kernel by simulating nfc device from user-space. (bsc#1200143)
- CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144)
- CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bnc#1177282)
- CVE-2022-32250: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015)
The following non-security bugs were fixed:
- ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default (git-fixes).
- ACPI: property: Release subnode properties with data nodes (git-fixes).
- ACPI: sysfs: Fix BERT error region memory mapping (git-fixes).
- ACPI: sysfs: Make sparse happy about address space in use (git-fixes).
- ALSA: ctxfi: Add SB046x PCI ID (git-fixes).
- ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes (git-fixes).
- ALSA: hda - fix unused Realtek function when PM is not enabled (git-fixes).
- ALSA: hda/conexant - Fix loopback issue with CX20632 (git-fixes).
- ALSA: hda/realtek - Add new type for ALC245 (git-fixes).
- ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS (git-fixes).
- ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop (git-fixes).
- ALSA: hda/realtek: Enable headset mic on Lenovo P360 (git-fixes).
- ALSA: pcm: Check for null pointer of pointer substream before dereferencing it (git-fixes).
- ALSA: usb-audio: Add missing ep_idx in fixed EP quirks (git-fixes).
- ALSA: usb-audio: Clear MIDI port active flag after draining (git-fixes).
- ALSA: usb-audio: Configure sync endpoints before data (git-fixes).
- ALSA: usb-audio: Fix undefined behavior due to shift overflowing the constant (git-fixes).
- ALSA: usb-audio: Optimize TEAC clock quirk (git-fixes).
- ALSA: usb-audio: Restore Rane SL-1 quirk (git-fixes).
- ALSA: usb-audio: Set up (implicit) sync for Saffire 6 (git-fixes).
- ALSA: usb-audio: Skip generic sync EP parse for secondary EP (git-fixes).
- ALSA: usb-audio: Workaround for clock setup on TEAC devices (git-fixes).
- ALSA: wavefront: Proper check of get_user() error (git-fixes).
- ARM: 9169/1: entry: fix Thumb2 bug in iWMMXt exception handling (git-fixes)
- ARM: 9170/1: fix panic when kasan and kprobe are enabled (git-fixes)
- ARM: 9187/1: JIVE: fix return value of __setup handler (git-fixes)
- ARM: config: u8500: Re-enable AB8500 battery charging (git-fixes)
- ARM: davinci: da850-evm: Avoid NULL pointer dereference (git-fixes)
- ARM: dts: am3517-evm: Fix misc pinmuxing (git-fixes)
- ARM: dts: armada-38x: Add generic compatible to UART nodes (git-fixes)
- ARM: dts: at91: fix pinctrl phandles (git-fixes)
- ARM: dts: at91: Map MCLK for wm8731 on at91sam9g20ek (git-fixes)
- ARM: dts: at91: sama5d2: Fix PMERRLOC resource size (git-fixes)
- ARM: dts: at91: sama5d4_xplained: fix pinctrl phandle name (git-fixes)
- ARM: dts: bcm2835-rpi-b: Fix GPIO line names (git-fixes)
- ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT (git-fixes)
- ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED (git-fixes)
- ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C (git-fixes)
- ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 (git-fixes)
- ARM: dts: Fix OpenBMC flash layout label addresses (git-fixes)
- ARM: dts: imx: Add missing LVDS decoder on M53Menlo (git-fixes)
- ARM: dts: imx23-evk: Remove MX23_PAD_SSP1_DETECT from hog group (git-fixes)
- ARM: dts: imx6qdl-apalis: Fix sgtl5000 detection issue (git-fixes)
- ARM: dts: imx6qdl-udoo: Properly describe the SD card detect (git-fixes)
- ARM: dts: imx6ull-colibri: fix vqmmc regulator (git-fixes)
- ARM: dts: imx6ull-pinfunc: Fix CSI_DATA07__ESAI_TX0 pad name (git-fixes)
- ARM: dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35 (git-fixes)
- ARM: dts: meson: Fix the UART compatible strings (git-fixes)
- ARM: dts: meson8: Fix the UART device-tree schema validation (git-fixes)
- ARM: dts: meson8b: Fix the UART device-tree schema validation (git-fixes)
- ARM: dts: qcom: ipq4019: fix sleep clock (git-fixes)
- ARM: dts: qcom: msm8974: Drop flags for mdss irqs (git-fixes)
- ARM: dts: suniv: F1C100: fix watchdog compatible (git-fixes)
- ARM: ftrace: ensure that ADR takes the Thumb bit into account (git-fixes)
- ARM: mediatek: select arch timer for mt7629 (git-fixes)
- ARM: omap: remove debug-leds driver (git-fixes)
- ARM: OMAP2+: Fix refcount leak in omap_gic_of_init (git-fixes)
- ARM: socfpga: dts: fix qspi node compatible (git-fixes)
- ARM: socfpga: fix missing RESET_CONTROLLER (git-fixes)
- ARM: tegra: Move panels to AUX bus (git-fixes)
- arm64: avoid fixmap race condition when create pud mapping (git-fixes)
- arm64: dts: broadcom: Fix sata nodename (git-fixes)
- arm64: dts: ns2: Fix spi-cpol and spi-cpha property (git-fixes)
- arm64: dts: rockchip: Fix SDIO regulator supply properties on (git-fixes)
- arm64: paravirt: Use RCU read locks to guard stolen_time (git-fixes).
- arm64: pgtable: make __pte_to_phys/__phys_to_pte_val inline functions (git-fixes)
- ASoC: atmel-classd: Remove endianness flag on class d component (git-fixes).
- ASoC: atmel-pdmic: Remove endianness flag on pdmic component (git-fixes).
- ASoC: da7219: Fix change notifications for tone generator frequency (git-fixes).
- ASoC: dapm: Do not fold register value changes into notifications (git-fixes).
- ASoC: dmaengine: Restore NULL prepare_slave_config() callback (git-fixes).
- ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition (git-fixes).
- ASoC: max98090: Generate notifications on changes for custom control (git-fixes).
- ASoC: max98090: Move check for invalid values before casting in max98090_put_enab_tlv() (git-fixes).
- ASoC: max98090: Reject invalid values in custom control put() (git-fixes).
- ASoC: max98357a: remove dependency on GPIOLIB (git-fixes).
- ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe (git-fixes).
- ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe (git-fixes).
- ASoC: meson: Fix event generation for G12A tohdmi mux (git-fixes).
- ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe (git-fixes).
- ASoC: ops: Validate input values in snd_soc_put_volsw_range() (git-fixes).
- ASoC: rk3328: fix disabling mclk on pclk probe failure (git-fixes).
- ASoC: rt5514: Fix event generation for 'DSP Voice Wake Up' control (git-fixes).
- ASoC: rt5645: Fix errorenous cleanup order (git-fixes).
- ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_* (git-fixes).
- ASoC: tscs454: Add endianness flag in snd_soc_component_driver (git-fixes).
- ASoC: wm2000: fix missing clk_disable_unprepare() on error in wm2000_anc_transition() (git-fixes).
- ASoC: wm8958: Fix change notifications for DSP controls (git-fixes).
- assoc_array: Fix BUG_ON during garbage collect (git-fixes).
- ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files (git-fixes).
- ata: pata_hpt37x: fix PCI clock detection (git-fixes).
- ata: pata_marvell: Check the 'bmdma_addr' beforing reading (git-fixes).
- ath9k_htc: fix potential out of bounds access with invalid rxstatus->rs_keyix (git-fixes).
- ath9k: fix ar9003_get_eepmisc (git-fixes).
- ath9k: fix QCA9561 PA bias level (git-fixes).
- b43: Fix assigning negative value to unsigned variable (git-fixes).
- b43legacy: Fix assigning negative value to unsigned variable (git-fixes).
- batman-adv: Do not skb_split skbuffs with frag_list (git-fixes).
- blk-cgroup: move blkcg_{get,set}_fc_appid out of line (bsc#1200045).
- blk-mq: fix tag_get wait task can't be awakened (bsc#1200263).
- blk-mq: Fix wrong wakeup batch configuration which will cause hang (bsc#1200263).
- block: fix bio_clone_blkg_association() to associate with proper blkcg_gq (bsc#1200259).
- Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed (git-fixes).
- Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout (git-fixes).
- Bluetooth: Fix the creation of hdev->name (git-fixes).
- Bluetooth: hci_qca: Use del_timer_sync() before freeing (git-fixes).
- bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag (jsc#SLE-8371 bsc#1153274).
- bnxt_en: Fix unnecessary dropping of RX packets (jsc#SLE-15075).
- brcmfmac: sdio: Fix undefined behavior due to shift overflowing the constant (git-fixes).
- btrfs: tree-checker: fix incorrect printk format (bsc#1200249).
- bus: sunxi-rsb: Fix the return value of sunxi_rsb_device_create() (git-fixes).
- bus: ti-sysc: Fix warnings for unbind for serial (git-fixes).
- can: grcan: grcan_close(): fix deadlock (git-fixes).
- can: grcan: use ofdev->dev when allocating DMA memory (git-fixes).
- carl9170: tx: fix an incorrect use of list iterator (git-fixes).
- ceph: fix setting of xattrs on async created inodes (bsc#1200192).
- cfg80211: set custom regdomain after wiphy registration (git-fixes).
- cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp() (bsc#1199839).
- clk: at91: generated: consider range when calculating best rate (git-fixes).
- clk: bcm2835: fix bcm2835_clock_choose_div (git-fixes).
- clk: imx8mp: fix usb_root_clk parent (git-fixes).
- clk: renesas: r9a06g032: Fix the RTC hclock description (git-fixes).
- clk: sunxi: sun9i-mmc: check return value after calling platform_get_resource() (git-fixes).
- clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value (git-fixes).
- clocksource/drivers/sp804: Avoid error on multiple instances (git-fixes).
- copy_process(): Move fd_install() out of sighand->siglock critical section (bsc#1199626).
- crypto: caam - fix i.MX6SX entropy delay value (git-fixes).
- crypto: ecrdsa - Fix incorrect use of vli_cmp (git-fixes).
- crypto: stm32 - fix reference leak in stm32_crc_remove (git-fixes).
- crypto: x86 - eliminate anonymous module_init and module_exit (git-fixes).
- crypto: x86/chacha20 - Avoid spurious jumps to other functions (git-fixes).
- dim: initialize all struct fields (git-fixes).
- dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace (git-fixes).
- dmaengine: idxd: Fix the error handling path in idxd_cdev_register() (git-fixes).
- dmaengine: stm32-mdma: remove GISR1 register (git-fixes).
- dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type (git-fixes).
- docs: powerpc: Fix misspellings and grammar errors (bsc#1055117 ltc#159753).
- docs: submitting-patches: Fix crossref to 'The canonical patch format' (git-fixes).
- drbd: fix an invalid memory access caused by incorrect use of list iterator (git-fixes).
- drbd: fix duplicate array initializer (git-fixes).
- drbd: Fix five use after free bugs in get_initial_state (git-fixes).
- drbd: remove assign_p_sizes_qlim (git-fixes).
- drbd: use bdev based limit helpers in drbd_send_sizes (git-fixes).
- drbd: use bdev_alignment_offset instead of queue_alignment_offset (git-fixes).
- driver core: fix deadlock in __device_attach (git-fixes).
- driver: base: fix UAF when driver_attach failed (git-fixes).
- drivers: base: cacheinfo: Get rid of DEFINE_SMP_CALL_CACHE_FUNCTION() (git-fixes)
- drivers: i2c: thunderx: Allow driver to work with ACPI defined TWSI controllers (git-fixes).
- drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop() (git-fixes).
- drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop() (git-fixes).
- drivers: tty: serial: Fix deadlock in sa1100_set_termios() (git-fixes).
- drivers: usb: host: Fix deadlock in oxu_bus_suspend() (git-fixes).
- drivers/base/memory: fix an unlikely reference counting issue in __add_memory_block() (git-fixes).
- drivers/base/node.c: fix compaction sysfs file leak (git-fixes).
- drm: imx: fix compiler warning with gcc-12 (git-fixes).
- drm: mali-dp: potential dereference of null pointer (git-fixes).
- drm: msm: fix error check return value of irq_of_parse_and_map() (git-fixes).
- drm: msm: fix possible memory leak in mdp5_crtc_cursor_set() (git-fixes).
- drm: sti: do not use kernel-doc markers (git-fixes).
- drm/amd/display/dc/gpio/gpio_service: Pass around correct dce_{version, environment} types (git-fixes).
- drm/amdgpu/cs: make commands with 0 chunks illegal behaviour (git-fixes).
- drm/amdgpu/smu10: fix SoC/fclk units in auto mode (git-fixes).
- drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo (git-fixes).
- drm/amdkfd: Fix GWS queue count (git-fixes).
- drm/atomic: Force bridge self-refresh-exit on CRTC switch (git-fixes).
- drm/blend: fix typo in the comment (git-fixes).
- drm/bridge: adv7511: clean up CEC adapter when probe fails (git-fixes).
- drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX (git-fixes).
- drm/bridge: analogix_dp: Support PSR-exit to disable transition (git-fixes).
- drm/bridge: Fix error handling in analogix_dp_probe (git-fixes).
- drm/edid: fix invalid EDID extension block filtering (git-fixes).
- drm/i915: Fix -Wstringop-overflow warning in call to intel_read_wm_latency() (git-fixes).
- drm/i915: Fix CFI violation with show_dynamic_id() (git-fixes).
- drm/i915: fix i915_globals_exit() section mismatch error (git-fixes).
- drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses (git-fixes).
- drm/komeda: Fix an undefined behavior bug in komeda_plane_add() (git-fixes).
- drm/komeda: return early if drm_universal_plane_init() fails (git-fixes).
- drm/mediatek: Fix mtk_cec_mask() (git-fixes).
- drm/msm: return an error pointer in msm_gem_prime_get_sg_table() (git-fixes).
- drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init (git-fixes).
- drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory free during pm runtime resume (git-fixes).
- drm/msm/dpu: adjust display_v_end for eDP and DP (git-fixes).
- drm/msm/dsi: fix address for second DSI PHY on SDM660 (git-fixes).
- drm/msm/dsi: fix error checks and return values for DSI xmit functions (git-fixes).
- drm/msm/hdmi: check return value after calling platform_get_resource_byname() (git-fixes).
- drm/msm/hdmi: fix error check return value of irq_of_parse_and_map() (git-fixes).
- drm/msm/mdp5: check the return of kzalloc() (git-fixes).
- drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is detected (git-fixes).
- drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected (git-fixes).
- drm/nouveau: Fix a potential theorical leak in nouveau_get_backlight_name() (git-fixes).
- drm/nouveau/clk: Fix an incorrect NULL check on list iterator (git-fixes).
- drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator (git-fixes).
- drm/nouveau/tegra: Stop using iommu_present() (git-fixes).
- drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01 (git-fixes).
- drm/plane: Move range check for format_count earlier (git-fixes).
- drm/radeon: fix a possible null pointer dereference (git-fixes).
- drm/rockchip: vop: fix possible null-ptr-deref in vop_bind() (git-fixes).
- drm/vc4: hvs: Reset muxes at probe time (git-fixes).
- drm/vc4: txp: Do not set TXP_VSTART_AT_EOF (git-fixes).
- drm/vc4: txp: Force alpha to be 0xff if it's disabled (git-fixes).
- drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes (git-fixes).
- drm/vmwgfx: Initialize drm_mode_fb_cmd2 (git-fixes).
- EDAC/synopsys: Read the error count from the correct register (bsc#1178134).
- efi: Add missing prototype for efi_capsule_setup_info (git-fixes).
- efi: Do not import certificates from UEFI Secure Boot for T2 Macs (git-fixes).
- fbcon: Consistently protect deferred_takeover with console_lock() (git-fixes).
- firewire: core: extend card->lock in fw_core_handle_bus_reset (git-fixes).
- firewire: fix potential uaf in outbound_phy_packet_callback() (git-fixes).
- firewire: remove check of list iterator against head past the loop body (git-fixes).
- firmware: arm_scmi: Fix list protocols enumeration in the base protocol (git-fixes).
- firmware: arm_scmi: Validate BASE_DISCOVER_LIST_PROTOCOLS response (git-fixes).
- firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle (git-fixes).
- firmware: stratix10-svc: fix a missing check on list iterator (git-fixes).
- ftrace: Clean up hash direct_functions on register failures (git-fixes).
- genirq: Fix reference leaks on irq affinity notifiers (git-fixes)
- genirq: Let GENERIC_IRQ_IPI select IRQ_DOMAIN_HIERARCHY (git-fixes)
- genirq/affinity: Consider that CPUs on nodes can be (git-fixes)
- genirq/affinity: Handle affinity setting on inactive (git-fixes)
- genirq/msi: Ensure deactivation on teardown (git-fixes)
- genirq/proc: Reject invalid affinity masks (again) (git-fixes)
- genirq/timings: Fix error return code in (git-fixes)
- genirq/timings: Prevent potential array overflow in (git-fixes)
- gma500: fix an incorrect NULL check on list iterator (git-fixes).
- gpio: adp5588: Remove support for platform setup and teardown callbacks (git-fixes).
- gpio: gpio-vf610: do not touch other bits when set the target bit (git-fixes).
- gpio: mvebu/pwm: Refuse requests with inverted polarity (git-fixes).
- gpio: pca953x: fix irq_stat not updated when irq is disabled (irq_mask not set) (git-fixes).
- gpio: pca953x: use the correct register address to do regcache sync (git-fixes).
- gpiolib: of: fix bounds check for 'gpio-reserved-ranges' (git-fixes).
- hex2bin: fix access beyond string end (git-fixes).
- HID: bigben: fix slab-out-of-bounds Write in bigben_probe (git-fixes).
- HID: elan: Fix potential double free in elan_input_configured (git-fixes).
- HID: hid-led: fix maximum brightness for Dream Cheeky (git-fixes).
- HID: multitouch: Add support for Google Whiskers Touchpad (git-fixes).
- hinic: fix bug of wq out of bound access (bsc#1176447).
- hwmon: (f71882fg) Fix negative temperature (git-fixes).
- hwmon: (ltq-cputemp) restrict it to SOC_XWAY (git-fixes).
- hwmon: (tmp401) Add OF device ID table (git-fixes).
- hwmon: Make chip parameter for with_info API mandatory (git-fixes).
- i2c: at91: Initialize dma_buf in at91_twi_xfer() (git-fixes).
- i2c: at91: use dma safe buffers (git-fixes).
- i2c: cadence: Increase timeout per message if necessary (git-fixes).
- i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging (git-fixes).
- i2c: mt7621: fix missing clk_disable_unprepare() on error in mtk_i2c_probe() (git-fixes).
- i40e: stop disabling VFs due to PF error responses (git-fixes).
- ice: arfs: fix use-after-free when freeing @rx_cpu_rmap (jsc#SLE-12878).
- ice: Clear default forwarding VSI during VSI release (jsc#SLE-12878).
- ice: Do not skip not enabled queues in ice_vc_dis_qs_msg (jsc#SLE-7926).
- ice: Fix race conditions between virtchnl handling and VF ndo ops (git-fixes).
- ice: synchronize_rcu() when terminating rings (jsc#SLE-7926).
- iio: adc: ad7124: Remove shift from scan_type (git-fixes).
- iio: adc: sc27xx: Fine tune the scale calibration values (git-fixes).
- iio: adc: sc27xx: fix read big scale voltage not right (git-fixes).
- iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check (git-fixes).
- iio: dac: ad5446: Fix read_raw not returning set value (git-fixes).
- iio: dac: ad5592r: Fix the missing return value (git-fixes).
- iio: dummy: iio_simple_dummy: check the return value of kstrdup() (git-fixes).
- iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on() (git-fixes).
- Input: add bounds checking to input_set_capability() (git-fixes).
- Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag (git-fixes).
- Input: goodix - fix spurious key release events (git-fixes).
- Input: ili210x - fix reset timing (git-fixes).
- Input: sparcspkr - fix refcount leak in bbc_beep_probe (git-fixes).
- Input: stmfts - do not leave device disabled in stmfts_input_open (git-fixes).
- Input: stmfts - fix reference leak in stmfts_input_open (git-fixes).
- iommu/amd: Increase timeout waiting for GA log enablement (bsc#1199052).
- ionic: avoid races in ionic_heartbeat_check (bsc#1167773).
- ionic: Cleanups in the Tx hotpath code (bsc#1167773).
- ionic: disable napi when ionic_lif_init() fails (bsc#1167773).
- ionic: Do not send reset commands if FW isn't running (bsc#1167773).
- ionic: fix missing pci_release_regions() on error in ionic_probe() (bsc#1167773).
- ionic: fix type complaint in ionic_dev_cmd_clean() (jsc#SLE-16649).
- ionic: monitor fw status generation (bsc#1167773).
- ionic: remove the dbid_inuse bitmap (bsc#1167773).
- ionic: start watchdog after all is setup (bsc#1167773).
- ipw2x00: Fix potential NULL dereference in libipw_xmit() (git-fixes).
- irqchip: irq-xtensa-mx: fix initial IRQ affinity (git-fixes).
- irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x (git-fixes).
- irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value (git-fixes).
- irqchip/exiu: Fix acknowledgment of edge triggered interrupts (git-fixes).
- ivtv: fix incorrect device_caps for ivtvfb (git-fixes).
- iwlwifi: iwl-dbg: Use del_timer_sync() before freeing (git-fixes).
- iwlwifi: mvm: fix assert 1F04 upon reconfig (git-fixes).
- iwlwifi: mvm: fix the return type for DSM functions 1 and 2 (git-fixes).
- jbd2: Fake symbols defined under CONFIG_JBD2_DEBUG (bsc#1198971).
- kABI: ivtv: restore caps member (git-fixes).
- Kconfig.debug: drop selecting non-existing HARDLOCKUP_DETECTOR_ARCH (git-fixes).
- KVM: fix wrong exception emulation in check_rdtsc (git-fixes).
- KVM: nVMX: Invalidate all roots when emulating INVVPID without EPT (git-fixes).
- KVM: nVMX: Query current VMCS when determining if MSR bitmaps are in use (git-fixes).
- KVM: nVMX: Set LDTR to its architecturally defined value on nested VM-Exit (git-fixes).
- KVM: nVMX: Unconditionally clear nested.pi_pending on nested VM-Enter (git-fixes).
- KVM: PPC: Fix TCE handling for VFIO (bsc#1061840 git-fixes).
- KVM: s390: pv: add macros for UVC CC values (git-fixes).
- KVM: s390: pv: avoid double free of sida page (git-fixes).
- KVM: s390: pv: avoid stalls for kvm_s390_pv_init_vm (git-fixes).
- KVM: s390: vsie/gmap: reduce gmap_rmap overhead (git-fixes).
- KVM: VMX: Fix stale docs for kvm-intel.emulate_invalid_guest_state (git-fixes).
- KVM: VMX: Flush all EPTP/VPID contexts on remote TLB flush (git-fixes).
- KVM: VMX: Use current VMCS to query WAITPKG support for MSR emulation (git-fixes).
- KVM: x86: clflushopt should be treated as a no-op by emulation (git-fixes).
- KVM: x86: Do not force set BSP bit when local APIC is managed by userspace (git-fixes).
- KVM: x86: Fix emulation in writing cr8 (git-fixes).
- KVM: x86: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce (git-fixes).
- KVM: x86: Immediately reset the MMU context when the SMM flag is cleared (git-fixes).
- KVM: x86: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode (git-fixes).
- KVM: x86: Mark CR4.TSD as being possibly owned by the guest (git-fixes).
- KVM: x86: Migrate the PIT only if vcpu0 is migrated, not any BSP (git-fixes).
- KVM: x86: Toggling CR4.PKE does not load PDPTEs in PAE mode (git-fixes).
- KVM: x86: Toggling CR4.SMAP does not load PDPTEs in PAE mode (git-fixes).
- KVM: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU (git-fixes).
- KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor() (git-fixes).
- KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] (git-fixes).
- lan743x: fix rx_napi_poll/interrupt ping-pong (git-fixes).
- lan743x: remove redundant assignment to variable rx_process_result (git-fixes).
- lib/raid6/test: fix multiple definition linking error (git-fixes).
- lpfc: Readd update to version 14.2.0.1 (bsc#1197675 bsc#1196478 bsc#1198989) The update was reverted due to some regression on older hardware. These have been fixed in the meantime, thus update the driver.
- mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection (git-fixes).
- mac80211: fix rx reordering with non explicit / psmp ack policy (git-fixes).
- mac80211: Reset MBSSID parameters upon connection (git-fixes).
- mac80211: upgrade passive scan to active scan on DFS channels after beacon rx (git-fixes).
- md: fix an incorrect NULL check in does_sb_need_changing (git-fixes).
- md: fix an incorrect NULL check in md_reload_sb (git-fixes).
- media: cx25821: Fix the warning when removing the module (git-fixes).
- media: davinci: Make use of the helper function devm_platform_ioremap_resource() (git-fixes).
- media: davinci: vpif: fix unbalanced runtime PM enable (git-fixes).
- media: davinci: vpif: fix use-after-free on driver unbind (git-fixes).
- media: media-entity.h: Fix documentation for media_create_intf_link (git-fixes).
- media: netup_unidvb: Do not leak SPI master in probe error path (git-fixes).
- media: ov7670: remove ov7670_power_off from ov7670_remove (git-fixes).
- media: pci: cx23885: Fix the error handling in cx23885_initdev() (git-fixes).
- media: platform: add missing put_device() call in mtk_jpeg_probe() and mtk_jpeg_remove() (git-fixes).
- media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init (git-fixes).
- media: saa7134: fix incorrect use to determine if list is empty (git-fixes).
- media: uvcvideo: Fix missing check to determine if element is found in list (git-fixes).
- media: venus: hfi: avoid null dereference in deinit (git-fixes).
- media: videobuf2: Fix the size printk format (git-fixes).
- media: vim2m: Register video device after setting up internals (git-fixes).
- mfd: ipaq-micro: Fix error check return value of platform_get_irq() (git-fixes).
- misc: ocxl: fix possible double free in ocxl_file_register_afu (git-fixes).
- misc: rtsx: set NULL intfdata when probe fails (git-fixes).
- mm, page_alloc: fix build_zonerefs_node() (git-fixes).
- mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove() (jsc#SLE-15176, jsc#SLE-16387).
- mmc: block: Fix CQE recovery reset success (git-fixes).
- mmc: block: Use generic_cmd6_time when modifying INAND_CMD38_ARG_EXT_CSD (git-fixes).
- mmc: core: Specify timeouts for BKOPS and CACHE_FLUSH for eMMC (git-fixes).
- mmc: jz4740: Apply DMA engine limits to maximum segment size (git-fixes).
- modpost: fix removing numeric suffixes (git-fixes).
- modpost: fix undefined behavior of is_arm_mapping_symbol() (git-fixes).
- mt76: check return value of mt76_txq_send_burst in mt76_txq_schedule_list (git-fixes).
- mt76: Fix undefined behavior due to shift overflowing the constant (git-fixes).
- mt76: mt7663s: fix rx buffer refcounting (git-fixes).
- mtd: rawnand: fix ecc parameters for mt7622 (git-fixes).
- mtd: rawnand: Fix return value check of wait_for_completion_timeout (git-fixes).
- mtd: spi-nor: core: Check written SR value in spi_nor_write_16bit_sr_and_check() (git-fixes).
- mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue (git-fixes).
- net: bcmgenet: Fix a resource leak in an error handling path in the probe functin (git-fixes).
- net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for internal PHYs (git-fixes).
- net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access (git-fixes).
- net: ethernet: Fix memleak in ethoc_probe (git-fixes).
- net: ethernet: ti: cpts: fix ethtool output when no ptp_clock registered (git-fixes).
- net: hdlc_ppp: Fix issues when mod_timer is called while timer is running (git-fixes).
- net: hns3: add a check for index in hclge_get_rss_key() (git-fixes).
- net: hns3: clear inited state and stop client after failed to register netdev (bsc#1154353).
- net: hns3: fix bug when PF set the duplicate MAC address for VFs (jsc#SLE-14777).
- net: hns3: fix kernel crash when unload VF while it is being reset (git-fixes).
- net: korina: fix return value (git-fixes).
- net: rtlwifi: properly check for alloc_workqueue() failure (git-fixes).
- net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog (bsc#1183405).
- net: stmmac: dwmac-sun8i: Balance internal PHY power (git-fixes).
- net: stmmac: dwmac-sun8i: Balance internal PHY resource references (git-fixes).
- net: stmmac: dwmac-sun8i: Balance syscon (de)initialization (git-fixes).
- net: stmmac: dwmac-sun8i: Fix probe error handling (git-fixes).
- net/mlx5: Fix a race on command flush flow (jsc#SLE-15172).
- net/mlx5e: Fix the calling of update_buffer_lossy() API (jsc#SLE-15172).
- netdevice: demote the type of some dev_addr_set() helpers (bsc#1200216).
- netfilter: conntrack: connection timeout after re-register (bsc#1199035).
- netfilter: conntrack: move synack init code to helper (bsc#1199035).
- netfilter: conntrack: re-init state for retransmitted syn-ack (bsc#1199035).
- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (bsc#1199035).
- netfilter: nf_conntrack_tcp: re-init for syn packets only (bsc#1199035).
- netfilter: nft_set_rbtree: overlap detection with element re-addition after deletion (bsc#1176447).
- NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx (git-fixes).
- NFC: nci: fix sleep in atomic context bugs caused by nci_skb_alloc (git-fixes).
- NFC: netlink: fix sleep in atomic bug when firmware download timeout (git-fixes).
- NFC: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs (git-fixes).
- NFC: NULL out the dev->rfkill to prevent UAF (git-fixes).
- NFC: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION (git-fixes).
- NFC: st21nfca: fix incorrect validating logic in EVT_TRANSACTION (git-fixes).
- NFC: st21nfca: fix memory leaks in EVT_TRANSACTION handling (git-fixes).
- NFS: Do not report ENOSPC write errors twice (git-fixes).
- NFS: limit use of ACCESS cache for negative responses (bsc#1196570).
- nfsd: Fix null-ptr-deref in nfsd_fill_super() (git-fixes).
- NFSv4: Do not invalidate inode attributes on delegation return (git-fixes).
- nl80211: show SSID for P2P_GO interfaces (git-fixes).
- nvdimm/region: always show the 'align' attribute (bsc#1199114).
- nvme-tcp: allow selecting the network interface for connections (bsc#1199670).
- nvme-tcp: use __dev_get_by_name instead dev_get_by_name for OPT_HOST_IFACE (bsc#1199670).
- objtool: Fix type of reloc::addend (git-fixes).
- PCI: aardvark: Clear all MSIs at setup (git-fixes).
- PCI: cadence: Fix find_first_zero_bit() limit (git-fixes).
- PCI: Do not enable AtomicOps on VFs (git-fixes).
- PCI: dwc: Fix setting error return on MSI DMA mapping failure (git-fixes).
- PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314).
- PCI: hv: Fix NUMA node assignment when kernel boots with custom NUMA topology (bsc#1199365).
- PCI: imx6: Fix PERST# start-up sequence (git-fixes).
- PCI: iproc: Set affinity mask on MSI interrupts (git-fixes).
- PCI: qcom: Fix runtime PM imbalance on probe errors (git-fixes).
- PCI: qcom: Fix unbalanced PHY init on probe errors (git-fixes).
- PCI: rockchip: Fix find_first_zero_bit() limit (git-fixes).
- PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits (git-fixes).
- PCI/PM: Power up all devices during runtime resume (git-fixes).
- pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards (git-fixes).
- phy: mapphone-mdm6600: Fix PM error handling in phy_mdm6600_probe (git-fixes).
- phy: qcom-qmp: fix pipe-clock imbalance on power-on failure (git-fixes).
- phy: qcom-qmp: fix reset-controller leak on probe errors (git-fixes).
- phy: qcom-qmp: fix struct clk leak on probe errors (git-fixes).
- phy: samsung: exynos5250-sata: fix missing device put in probe error paths (git-fixes).
- phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe (git-fixes).
- phy: ti: Add missing pm_runtime_disable() in serdes_am654_probe (git-fixes).
- phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks (git-fixes).
- pinctrl: mvebu: Fix irq_of_parse_and_map() return value (git-fixes).
- pinctrl: pistachio: fix use of irq_of_parse_and_map() (git-fixes).
- pinctrl: rockchip: fix RK3308 pinmux bits (git-fixes).
- pinctrl: sunxi: fix f1c100s uart2 function (git-fixes).
- pinctrl/rockchip: support deferring other gpio params (git-fixes).
- ping: fix the sk_bound_dev_if match in ping_lookup (bsc#1195826).
- ping: remove pr_err from ping_lookup (bsc#1195826).
- platform/chrome: cros_ec_debugfs: detach log reader wq from devm (git-fixes).
- platform/chrome: cros_ec_proto: Send command again when timeout occurs (git-fixes).
- platform/x86: samsung-laptop: Fix an unsigned comparison which can never be negative (git-fixes).
- platform/x86: wmi: Fix driver->notify() vs ->probe() race (git-fixes).
- platform/x86: wmi: Replace read_takes_no_args with a flags field (git-fixes).
- PM / devfreq: rk3399_dmc: Disable edev on remove() (git-fixes).
- powerpc: Enable the DAWR on POWER9 DD2.3 and above (bsc#1055117 ltc#159753).
- powerpc/64s: Add CPU_FTRS_POWER10 to ALWAYS mask (jsc#SLE-13521 git-fixes).
- powerpc/64s: Add CPU_FTRS_POWER9_DD2_2 to CPU_FTRS_ALWAYS mask (bsc#1061840 git-fixes).
- powerpc/64s/radix: Fix huge vmap false positive (bsc#1156395).
- powerpc/fadump: fix PT_LOAD segment for boot memory area (bsc#1103269 ltc#169948 git-fixes).
- powerpc/powernv: Add __init attribute to eligible functions (bsc#1188885 ltc#193722 git-fixes).
- powerpc/powernv: Get L1D flush requirements from device-tree (bsc#1188885 ltc#193722 git-fixes).
- powerpc/powernv: Get STF barrier requirements from device-tree (bsc#1188885 ltc#193722 git-fixes).
- powerpc/powernv: Remove POWER9 PVR version check for entry and uaccess flushes (bsc#1188885 ltc#193722 git-fixes).
- powerpc/xive: Add some error handling code to 'xive_spapr_init()' (git-fixes).
- powerpc/xive: Fix refcount leak in xive_spapr_init (git-fixes).
- pwm: lp3943: Fix duty calculation in case period was clamped (git-fixes).
- pwm: raspberrypi-poe: Fix endianness in firmware struct (git-fixes).
- qlcnic: Fix error code in probe (git-fixes).
- raid5: introduce MD_BROKEN (git-fixes).
- regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET (git-fixes).
- regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt (git-fixes).
- rtc: fix use-after-free on device removal (git-fixes).
- rtc: mc146818-lib: Fix the AltCentury for AMD platforms (git-fixes).
- rtc: mt6397: check return value after calling platform_get_resource() (git-fixes).
- rtl818x: Prevent using not initialized queues (git-fixes).
- rtlwifi: Use pr_warn instead of WARN_ONCE (git-fixes).
- s390: fix detection of vector enhancements facility 1 vs. vector packed decimal facility (git-fixes).
- s390: fix strrchr() implementation (git-fixes).
- s390/cio: dont call css_wait_for_slow_path() inside a lock (git-fixes).
- s390/cio: Fix the 'type' field in s390_cio_tpi tracepoint (git-fixes).
- s390/crypto: fix scatterwalk_unmap() callers in AES-GCM (git-fixes).
- s390/ctcm: fix potential memory leak (git-fixes).
- s390/ctcm: fix variable dereferenced before check (git-fixes).
- s390/dasd: fix data corruption for ESE devices (bsc#1200207 LTC#198454).
- s390/dasd: Fix read for ESE with blksize 4k (bsc#1200206 LTC#198455).
- s390/dasd: Fix read inconsistency for ESE DASD devices (bsc#1200206 LTC#198455).
- s390/dasd: prevent double format of tracks for ESE devices (bsc#1200207 LTC#198454).
- s390/ftrace: fix ftrace_update_ftrace_func implementation (git-fixes).
- s390/lcs: fix variable dereferenced before check (git-fixes).
- s390/mcck: fix invalid KVM guest condition check (git-fixes).
- s390/mcck: isolate SIE instruction when setting CIF_MCCK_GUEST flag (git-fixes).
- s390/nmi: handle guarded storage validity failures for KVM guests (git-fixes).
- s390/nmi: handle vector validity failures for KVM guests (git-fixes).
- s390/pv: fix the forcing of the swiotlb (git-fixes).
- s390/qdio: cancel the ESTABLISH ccw after timeout (git-fixes).
- s390/qdio: fix roll-back after timeout on ESTABLISH ccw (git-fixes).
- s390/vfio-ap: fix circular lockdep when setting/clearing crypto masks (git-fixes).
- sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl (git-fixes).
- sata_fsl: fix warning in remove_proc_entry when rmmod sata_fsl (git-fixes).
- sched/pelt: Fix attach_entity_load_avg() corner case (git-fixes)
- sched/topology: Skip updating masks for non-online nodes (bsc#1197446 ltc#183000).
- scsi: dc395x: Fix a missing check on list iterator (git-fixes).
- scsi: fnic: Fix a tracing statement (git-fixes).
- scsi: fnic: Replace DMA mask of 64 bits with 47 bits (bsc#1199631).
- scsi: hisi_sas: Change permission of parameter prot_mask (git-fixes).
- scsi: lpfc: Alter FPIN stat accounting logic (bsc#1200045).
- scsi: lpfc: Change FA-PWWN detection methodology (bsc#1200045).
- scsi: lpfc: Change VMID registration to be based on fabric parameters (bsc#1200045).
- scsi: lpfc: Clear fabric topology flag before initiating a new FLOGI (bsc#1200045).
- scsi: lpfc: Copyright updates for 14.2.0.2 patches (bsc#1200045).
- scsi: lpfc: Correct BDE DMA address assignment for GEN_REQ_WQE (bsc#1200045 bsc#1198989 bsc#1197675).
- scsi: lpfc: Correct CRC32 calculation for congestion stats (bsc#1200045).
- scsi: lpfc: Decrement outstanding gidft_inp counter if lpfc_err_lost_link() (bsc#1200045).
- scsi: lpfc: Expand setting ELS_ID field in ELS_REQUEST64_WQE (bsc#1200045).
- scsi: lpfc: Fill in missing ndlp kref puts in error paths (bsc#1200045).
- scsi: lpfc: Fix additional reference counting in lpfc_bsg_rport_els() (bsc#1200045).
- scsi: lpfc: Fix call trace observed during I/O with CMF enabled (bsc#1200045).
- scsi: lpfc: Fix diagnostic fw logging after a function reset (bsc#1200045).
- scsi: lpfc: Fix dmabuf ptr assignment in lpfc_ct_reject_event() (bsc#1200045).
- scsi: lpfc: Fix element offset in __lpfc_sli_release_iocbq_s4() (bsc#1200045).
- scsi: lpfc: Fix field overload in lpfc_iocbq data structure (bsc#1200045).
- scsi: lpfc: Fix ndlp put following a LOGO completion (bsc#1200045).
- scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and PLOGI (bsc#1200045).
- scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp() (bsc#1200045).
- scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock (bsc#1200045).
- scsi: lpfc: Fix split code for FLOGI on FCoE (bsc#1200045 bsc#1198989 bsc#1197675).
- scsi: lpfc: Inhibit aborts if external loopback plug is inserted (bsc#1200045).
- scsi: lpfc: Introduce FC_RSCN_MEMENTO flag for tracking post RSCN completion (bsc#1200045).
- scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg() (bsc#1200045).
- scsi: lpfc: Move MI module parameter check to handle dynamic disable (bsc#1200045).
- scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT (bsc#1200045).
- scsi: lpfc: Refactor cleanup of mailbox commands (bsc#1200045).
- scsi: lpfc: Register for Application Services FC-4 type in Fabric topology (bsc#1200045).
- scsi: lpfc: Remove false FDMI NVMe FC-4 support for NPIV ports (bsc#1200045).
- scsi: lpfc: Remove redundant lpfc_sli_prep_wqe() call (bsc#1200045).
- scsi: lpfc: Remove unnecessary null ndlp check in lpfc_sli_prep_wqe() (bsc#1200045).
- scsi: lpfc: Remove unnecessary NULL pointer assignment for ELS_RDF path (bsc#1200045).
- scsi: lpfc: Remove unneeded variable (bsc#1200045).
- scsi: lpfc: Requeue SCSI I/O to upper layer when fw reports link down (bsc#1200045).
- scsi: lpfc: Revise FDMI reporting of supported port speed for trunk groups (bsc#1200045).
- scsi: lpfc: Rework FDMI initialization after link up (bsc#1200045).
- scsi: lpfc: Transition to NPR state upon LOGO cmpl if link down or aborted (bsc#1200045).
- scsi: lpfc: Tweak message log categories for ELS/FDMI/NVMe rescan (bsc#1200045).
- scsi: lpfc: Update fc_prli_sent outstanding only after guaranteed IOCB submit (bsc#1200045).
- scsi: lpfc: Update lpfc version to 14.2.0.2 (bsc#1200045).
- scsi: lpfc: Update lpfc version to 14.2.0.3 (bsc#1200045).
- scsi: lpfc: Update stat accounting for READ_STATUS mbox command (bsc#1200045).
- scsi: lpfc: Use list_for_each_entry_safe() in rscn_recovery_check() (bsc#1200045).
- scsi: lpfc: Use sg_dma_address() and sg_dma_len() macros for NVMe I/O (bsc#1200045).
- scsi: lpfc: Zero SLI4 fcp_cmnd buffer's fcpCntl0 field (bsc#1200045).
- scsi: pm8001: Fix abort all task initialization (git-fixes).
- scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req() (git-fixes).
- scsi: pm8001: Fix command initialization in pm80XX_send_read_log() (git-fixes).
- scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req() (git-fixes).
- scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req() (git-fixes).
- scsi: pm8001: Fix le32 values handling in pm80xx_set_sas_protocol_timer_config() (git-fixes).
- scsi: pm8001: Fix NCQ NON DATA command completion handling (git-fixes).
- scsi: pm8001: Fix NCQ NON DATA command task initialization (git-fixes).
- scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update() (git-fixes).
- scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config() (git-fixes).
- scsi: pm80xx: Enable upper inbound, outbound queues (git-fixes).
- scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63 (git-fixes).
- scsi: qla2xxx: edif: Remove unneeded variable (bsc#1200046).
- scsi: qla2xxx: Fix missed DMA unmap for aborted commands (bsc#1200046).
- scsi: qla2xxx: Remove free_sg command flag (bsc#1200046).
- scsi: qla2xxx: Remove unneeded flush_workqueue() (bsc#1200046).
- scsi: sr: Do not leak information in ioctl (git-fixes).
- scsi: ufs: core: Exclude UECxx from SFR dump list (git-fixes).
- scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled (git-fixes).
- scsi: ufs: qcom: Fix ufs_qcom_resume() (git-fixes).
- scsi: virtio-scsi: Eliminate anonymous module_init and module_exit (git-fixes).
- scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() (git-fixes).
- selftests: firmware: Use smaller dictionary for XZ compression (git-fixes).
- serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485 (git-fixes).
- serial: 8250_mtk: Fix register address for XON/XOFF character (git-fixes).
- serial: 8250_mtk: Fix UART_EFR register address (git-fixes).
- serial: 8250: Also set sticky MCR bits in console restoration (git-fixes).
- serial: 8250: core: Remove unneeded linux/pm_runtime.h (git-fixes).
- serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device (git-fixes).
- serial: 8250: pxa: Remove unneeded linux/pm_runtime.h (git-fixes).
- serial: digicolor-usart: Do not allow CS5-6 (git-fixes).
- serial: imx: fix overrun interrupts in DMA mode (git-fixes).
- serial: meson: acquire port->lock in startup() (git-fixes).
- serial: msm_serial: disable interrupts in __msm_console_write() (git-fixes).
- serial: pch: do not overwrite xmit->buf[0] by x_char (git-fixes).
- serial: rda-uart: Do not allow CS5-6 (git-fixes).
- serial: sh-sci: Do not allow CS5-6 (git-fixes).
- serial: sifive: Sanitize CSIZE and c_iflag (git-fixes).
- serial: st-asc: Sanitize CSIZE and correct PARENB for CS7 (git-fixes).
- serial: stm32-usart: Correct CSIZE, bits, and parity (git-fixes).
- serial: txx9: Do not allow CS5-6 (git-fixes).
- slimbus: qcom: Fix IRQ check in qcom_slim_probe (git-fixes).
- smp: Fix offline cpu check in flush_smp_call_function_queue() (git-fixes).
- smsc911x: allow using IRQ0 (git-fixes).
- soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc (git-fixes).
- soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc (git-fixes).
- soc: rockchip: Fix refcount leak in rockchip_grf_init (git-fixes).
- spi: img-spfi: Fix pm_runtime_get_sync() error checking (git-fixes).
- spi: Introduce device-managed SPI controller allocation (git-fixes).
- spi: spi-cadence: Fix kernel-doc format for resume/suspend (git-fixes).
- spi: spi-fsl-qspi: check return value after calling platform_get_resource_byname() (git-fixes).
- spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA direction (git-fixes).
- spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout (git-fixes).
- spi: stm32-qspi: Fix wait_cmd timeout in APM mode (git-fixes).
- staging: fieldbus: Fix the error handling path in anybuss_host_common_probe() (git-fixes).
- staging: rtl8712: fix uninit-value in r871xu_drv_init() (git-fixes).
- staging: rtl8712: fix uninit-value in usb_read8() and friends (git-fixes).
- SUNRPC: Ensure gss-proxy connects on setup (git-fixes).
- SUNRPC: Ensure that the gssproxy client can start in a connected state (git-fixes).
- thermal: int340x: Fix attr.show callback prototype (git-fixes).
- thermal/drivers/bcm2711: Do not clamp temperature at zero (git-fixes).
- thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe (git-fixes).
- tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator (git-fixes).
- timekeeping: Really make sure wall_to_monotonic isn't (git-fixes)
- timers: Fix warning condition in __run_timers() (git-fixes)
- tpm: Fix buffer access in tpm2_get_tpm_pt() (git-fixes).
- tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe() (bsc#1065729).
- tracing: Fix potential double free in create_var_ref() (git-fixes).
- tracing: Fix return value of trace_pid_write() (git-fixes).
- tty: Fix a possible resource leak in icom_probe (git-fixes).
- tty: fix deadlock caused by calling printk() under tty_port->lock (git-fixes).
- tty: goldfish: Use tty_port_destroy() to destroy port (git-fixes).
- tty: serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe() (git-fixes).
- tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id and ida_simple_get (git-fixes).
- tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe (git-fixes).
- tty: synclink_gt: Fix null-pointer-dereference in slgt_clean() (git-fixes).
- usb: cdc-wdm: fix reading stuck on device close (git-fixes).
- usb: core: hcd: Add support for deferring roothub registration (git-fixes).
- usb: dwc2: gadget: do not reset gadget's driver->bus (git-fixes).
- usb: dwc3: pci: Fix pm_runtime_get_sync() error checking (git-fixes).
- usb: ehci-omap: drop unused ehci_read() function (git-fixes).
- usb: gadget: configfs: clear deactivation flag in configfs_composite_unbind() (git-fixes).
- usb: hcd-pci: Fully suspend across freeze/thaw cycle (git-fixes).
- usb: host: isp116x: check return value after calling platform_get_resource() (git-fixes).
- usb: misc: fix improper handling of refcount in uss720_probe() (git-fixes).
- usb: mtu3: fix USB 3.0 dual-role-switch from device to host (git-fixes).
- usb: musb: Fix missing of_node_put() in omap2430_probe (git-fixes).
- usb: new quirk for Dell Gen 2 devices (git-fixes).
- usb: quirks: add a Realtek card reader (git-fixes).
- usb: quirks: add STRING quirk for VCOM device (git-fixes).
- usb: serial: cp210x: add PIDs for Kamstrup USB Meter Reader (git-fixes).
- usb: serial: option: add Fibocom L610 modem (git-fixes).
- usb: serial: option: add Fibocom MA510 modem (git-fixes).
- usb: serial: option: add Quectel BG95 modem (git-fixes).
- usb: serial: option: add support for Cinterion MV32-WA/MV32-WB (git-fixes).
- usb: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions (git-fixes).
- usb: serial: pl2303: add device id for HP LM930 Display (git-fixes).
- usb: serial: qcserial: add support for Sierra Wireless EM7590 (git-fixes).
- usb: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS (git-fixes).
- usb: storage: karma: fix rio_karma_init return (git-fixes).
- usb: typec: mux: Check dev_set_name() return value (git-fixes).
- usb: typec: tcpci: Do not skip cleanup in .remove() on error (git-fixes).
- usb: typec: ucsi: Fix reuse of completion structure (git-fixes).
- usb: typec: ucsi: Fix role swapping (git-fixes).
- usb: usbip: add missing device lock on tweak configuration cmd (git-fixes).
- usb: usbip: fix a refcount leak in stub_probe() (git-fixes).
- vfio-ccw: Check initialized flag in cp_init() (git-fixes).
- vfio/ccw: Remove unneeded GFP_DMA (git-fixes).
- video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup (git-fixes).
- video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove() (git-fixes).
- virtio/s390: implement virtio-ccw revision 2 correctly (git-fixes).
- vringh: Fix loop descriptors check in the indirect cases (git-fixes).
- watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe (git-fixes).
- watchdog: wdat_wdt: Stop watchdog when rebooting the system (git-fixes).
- wifi: mac80211: fix use-after-free in chanctx code (git-fixes).
- wireguard: device: check for metadata_dst with skb_valid_dst() (git-fixes).
- xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms (git-fixes).
- xhci: stop polling roothubs after shutdown (git-fixes).
Patchnames: openSUSE-Leap-Micro-5.2-2022-2177
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.4 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.2 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.8 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.5 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.2 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.1 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.6 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.4 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
160 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1055117 | self |
| https://bugzilla.suse.com/1061840 | self |
| https://bugzilla.suse.com/1065729 | self |
| https://bugzilla.suse.com/1103269 | self |
| https://bugzilla.suse.com/1118212 | self |
| https://bugzilla.suse.com/1153274 | self |
| https://bugzilla.suse.com/1154353 | self |
| https://bugzilla.suse.com/1156395 | self |
| https://bugzilla.suse.com/1158266 | self |
| https://bugzilla.suse.com/1167773 | self |
| https://bugzilla.suse.com/1176447 | self |
| https://bugzilla.suse.com/1177282 | self |
| https://bugzilla.suse.com/1178134 | self |
| https://bugzilla.suse.com/1180100 | self |
| https://bugzilla.suse.com/1183405 | self |
| https://bugzilla.suse.com/1188885 | self |
| https://bugzilla.suse.com/1195826 | self |
| https://bugzilla.suse.com/1196426 | self |
| https://bugzilla.suse.com/1196478 | self |
| https://bugzilla.suse.com/1196570 | self |
| https://bugzilla.suse.com/1196840 | self |
| https://bugzilla.suse.com/1197446 | self |
| https://bugzilla.suse.com/1197472 | self |
| https://bugzilla.suse.com/1197601 | self |
| https://bugzilla.suse.com/1197675 | self |
| https://bugzilla.suse.com/1198438 | self |
| https://bugzilla.suse.com/1198577 | self |
| https://bugzilla.suse.com/1198971 | self |
| https://bugzilla.suse.com/1198989 | self |
| https://bugzilla.suse.com/1199035 | self |
| https://bugzilla.suse.com/1199052 | self |
| https://bugzilla.suse.com/1199063 | self |
| https://bugzilla.suse.com/1199114 | self |
| https://bugzilla.suse.com/1199314 | self |
| https://bugzilla.suse.com/1199365 | self |
| https://bugzilla.suse.com/1199505 | self |
| https://bugzilla.suse.com/1199507 | self |
| https://bugzilla.suse.com/1199564 | self |
| https://bugzilla.suse.com/1199626 | self |
| https://bugzilla.suse.com/1199631 | self |
| https://bugzilla.suse.com/1199650 | self |
| https://bugzilla.suse.com/1199670 | self |
| https://bugzilla.suse.com/1199839 | self |
| https://bugzilla.suse.com/1200015 | self |
| https://bugzilla.suse.com/1200019 | self |
| https://bugzilla.suse.com/1200045 | self |
| https://bugzilla.suse.com/1200046 | self |
| https://bugzilla.suse.com/1200143 | self |
| https://bugzilla.suse.com/1200144 | self |
| https://bugzilla.suse.com/1200192 | self |
| https://bugzilla.suse.com/1200206 | self |
| https://bugzilla.suse.com/1200207 | self |
| https://bugzilla.suse.com/1200216 | self |
| https://bugzilla.suse.com/1200249 | self |
| https://bugzilla.suse.com/1200259 | self |
| https://bugzilla.suse.com/1200263 | self |
| https://bugzilla.suse.com/1200529 | self |
| https://bugzilla.suse.com/1200549 | self |
| https://bugzilla.suse.com/1200604 | self |
| https://www.suse.com/security/cve/CVE-2019-19377/ | self |
| https://www.suse.com/security/cve/CVE-2020-26541/ | self |
| https://www.suse.com/security/cve/CVE-2021-33061/ | self |
| https://www.suse.com/security/cve/CVE-2022-0168/ | self |
| https://www.suse.com/security/cve/CVE-2022-1184/ | self |
| https://www.suse.com/security/cve/CVE-2022-1652/ | self |
| https://www.suse.com/security/cve/CVE-2022-1729/ | self |
| https://www.suse.com/security/cve/CVE-2022-1966/ | self |
| https://www.suse.com/security/cve/CVE-2022-1972/ | self |
| https://www.suse.com/security/cve/CVE-2022-1974/ | self |
| https://www.suse.com/security/cve/CVE-2022-1975/ | self |
| https://www.suse.com/security/cve/CVE-2022-20008/ | self |
| https://www.suse.com/security/cve/CVE-2022-20141/ | self |
| https://www.suse.com/security/cve/CVE-2022-21123/ | self |
| https://www.suse.com/security/cve/CVE-2022-21125/ | self |
| https://www.suse.com/security/cve/CVE-2022-21127/ | self |
| https://www.suse.com/security/cve/CVE-2022-21166/ | self |
| https://www.suse.com/security/cve/CVE-2022-21180/ | self |
| https://www.suse.com/security/cve/CVE-2022-30594/ | self |
| https://www.suse.com/security/cve/CVE-2022-32250/ | self |
| https://www.suse.com/security/cve/CVE-2019-19377 | external |
| https://bugzilla.suse.com/1158266 | external |
| https://bugzilla.suse.com/1162338 | external |
| https://bugzilla.suse.com/1162369 | external |
| https://bugzilla.suse.com/1173871 | external |
| https://bugzilla.suse.com/1211495 | external |
| https://www.suse.com/security/cve/CVE-2020-26541 | external |
| https://bugzilla.suse.com/1177282 | external |
| https://www.suse.com/security/cve/CVE-2021-33061 | external |
| https://bugzilla.suse.com/1196426 | external |
| https://www.suse.com/security/cve/CVE-2022-0168 | external |
| https://bugzilla.suse.com/1197472 | external |
| https://www.suse.com/security/cve/CVE-2022-1184 | external |
| https://bugzilla.suse.com/1198577 | external |
| https://bugzilla.suse.com/1210859 | external |
| https://www.suse.com/security/cve/CVE-2022-1652 | external |
| https://bugzilla.suse.com/1199063 | external |
| https://bugzilla.suse.com/1200057 | external |
| https://bugzilla.suse.com/1200751 | external |
| https://bugzilla.suse.com/1201034 | external |
| https://bugzilla.suse.com/1201832 | external |
| https://bugzilla.suse.com/1204132 | external |
| https://bugzilla.suse.com/1212307 | external |
| https://www.suse.com/security/cve/CVE-2022-1729 | external |
| https://bugzilla.suse.com/1199507 | external |
| https://bugzilla.suse.com/1199697 | external |
| https://bugzilla.suse.com/1201832 | external |
| https://www.suse.com/security/cve/CVE-2022-1966 | external |
| https://bugzilla.suse.com/1200015 | external |
| https://bugzilla.suse.com/1200268 | external |
| https://bugzilla.suse.com/1200494 | external |
| https://bugzilla.suse.com/1200529 | external |
| https://www.suse.com/security/cve/CVE-2022-1972 | external |
| https://bugzilla.suse.com/1200019 | external |
| https://bugzilla.suse.com/1200266 | external |
| https://www.suse.com/security/cve/CVE-2022-1974 | external |
| https://bugzilla.suse.com/1200144 | external |
| https://bugzilla.suse.com/1200265 | external |
| https://www.suse.com/security/cve/CVE-2022-1975 | external |
| https://bugzilla.suse.com/1200143 | external |
| https://www.suse.com/security/cve/CVE-2022-20008 | external |
| https://bugzilla.suse.com/1199564 | external |
| https://www.suse.com/security/cve/CVE-2022-20141 | external |
| https://bugzilla.suse.com/1200604 | external |
| https://bugzilla.suse.com/1200605 | external |
| https://bugzilla.suse.com/1203034 | external |
| https://www.suse.com/security/cve/CVE-2022-21123 | external |
| https://bugzilla.suse.com/1199650 | external |
| https://bugzilla.suse.com/1200549 | external |
| https://bugzilla.suse.com/1209075 | external |
| https://www.suse.com/security/cve/CVE-2022-21125 | external |
| https://bugzilla.suse.com/1199650 | external |
| https://bugzilla.suse.com/1200549 | external |
| https://bugzilla.suse.com/1209074 | external |
| https://www.suse.com/security/cve/CVE-2022-21127 | external |
| https://bugzilla.suse.com/1199650 | external |
| https://bugzilla.suse.com/1200549 | external |
| https://www.suse.com/security/cve/CVE-2022-21166 | external |
| https://bugzilla.suse.com/1199650 | external |
| https://bugzilla.suse.com/1200549 | external |
| https://bugzilla.suse.com/1209073 | external |
| https://www.suse.com/security/cve/CVE-2022-21180 | external |
| https://bugzilla.suse.com/1199650 | external |
| https://bugzilla.suse.com/1200549 | external |
| https://bugzilla.suse.com/1212313 | external |
| https://www.suse.com/security/cve/CVE-2022-30594 | external |
| https://bugzilla.suse.com/1199505 | external |
| https://bugzilla.suse.com/1199602 | external |
| https://bugzilla.suse.com/1201549 | external |
| https://bugzilla.suse.com/1204132 | external |
| https://www.suse.com/security/cve/CVE-2022-32250 | external |
| https://bugzilla.suse.com/1200015 | external |
| https://bugzilla.suse.com/1200268 | external |
| https://bugzilla.suse.com/1200494 | external |
| https://bugzilla.suse.com/1202992 | external |
| https://bugzilla.suse.com/1202993 | external |
| https://bugzilla.suse.com/1203002 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP3 kernel was updated.\n\nThe following security bugs were fixed:\n\n- CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019)\n- CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266)\n- CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507).\n- CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577)\n- CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063).\n- CVE-2022-20008: Fixed bug that allows to read kernel heap memory due to uninitialized data in mmc_blk_read_single of block.c. (bnc#1199564)\n- CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505).\n- CVE-2022-0168: Fixed a NULL pointer dereference in smb2_ioctl_query_info. (bsc#1197472)\n- CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426).\n- CVE-2022-20141: Fixwed an use after free due to improper locking. This bug could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. (bnc#1200604)\n- CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)\n- CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)\n- CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)\n- CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)\n- CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)\n- CVE-2022-1975: Fixed a sleep-in-atomic bug that allows attacker to crash linux kernel by simulating nfc device from user-space. (bsc#1200143)\n- CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144)\n- CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bnc#1177282)\n- CVE-2022-32250: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015)\n\nThe following non-security bugs were fixed:\n\n- ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default (git-fixes).\n- ACPI: property: Release subnode properties with data nodes (git-fixes).\n- ACPI: sysfs: Fix BERT error region memory mapping (git-fixes).\n- ACPI: sysfs: Make sparse happy about address space in use (git-fixes).\n- ALSA: ctxfi: Add SB046x PCI ID (git-fixes).\n- ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes (git-fixes).\n- ALSA: hda - fix unused Realtek function when PM is not enabled (git-fixes).\n- ALSA: hda/conexant - Fix loopback issue with CX20632 (git-fixes).\n- ALSA: hda/realtek - Add new type for ALC245 (git-fixes).\n- ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS (git-fixes).\n- ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop (git-fixes).\n- ALSA: hda/realtek: Enable headset mic on Lenovo P360 (git-fixes).\n- ALSA: pcm: Check for null pointer of pointer substream before dereferencing it (git-fixes).\n- ALSA: usb-audio: Add missing ep_idx in fixed EP quirks (git-fixes).\n- ALSA: usb-audio: Clear MIDI port active flag after draining (git-fixes).\n- ALSA: usb-audio: Configure sync endpoints before data (git-fixes).\n- ALSA: usb-audio: Fix undefined behavior due to shift overflowing the constant (git-fixes).\n- ALSA: usb-audio: Optimize TEAC clock quirk (git-fixes).\n- ALSA: usb-audio: Restore Rane SL-1 quirk (git-fixes).\n- ALSA: usb-audio: Set up (implicit) sync for Saffire 6 (git-fixes).\n- ALSA: usb-audio: Skip generic sync EP parse for secondary EP (git-fixes).\n- ALSA: usb-audio: Workaround for clock setup on TEAC devices (git-fixes).\n- ALSA: wavefront: Proper check of get_user() error (git-fixes).\n- ARM: 9169/1: entry: fix Thumb2 bug in iWMMXt exception handling (git-fixes)\n- ARM: 9170/1: fix panic when kasan and kprobe are enabled (git-fixes)\n- ARM: 9187/1: JIVE: fix return value of __setup handler (git-fixes)\n- ARM: config: u8500: Re-enable AB8500 battery charging (git-fixes)\n- ARM: davinci: da850-evm: Avoid NULL pointer dereference (git-fixes)\n- ARM: dts: am3517-evm: Fix misc pinmuxing (git-fixes)\n- ARM: dts: armada-38x: Add generic compatible to UART nodes (git-fixes)\n- ARM: dts: at91: fix pinctrl phandles (git-fixes)\n- ARM: dts: at91: Map MCLK for wm8731 on at91sam9g20ek (git-fixes)\n- ARM: dts: at91: sama5d2: Fix PMERRLOC resource size (git-fixes)\n- ARM: dts: at91: sama5d4_xplained: fix pinctrl phandle name (git-fixes)\n- ARM: dts: bcm2835-rpi-b: Fix GPIO line names (git-fixes)\n- ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT (git-fixes)\n- ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED (git-fixes)\n- ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C (git-fixes)\n- ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 (git-fixes)\n- ARM: dts: Fix OpenBMC flash layout label addresses (git-fixes)\n- ARM: dts: imx: Add missing LVDS decoder on M53Menlo (git-fixes)\n- ARM: dts: imx23-evk: Remove MX23_PAD_SSP1_DETECT from hog group (git-fixes)\n- ARM: dts: imx6qdl-apalis: Fix sgtl5000 detection issue (git-fixes)\n- ARM: dts: imx6qdl-udoo: Properly describe the SD card detect (git-fixes)\n- ARM: dts: imx6ull-colibri: fix vqmmc regulator (git-fixes)\n- ARM: dts: imx6ull-pinfunc: Fix CSI_DATA07__ESAI_TX0 pad name (git-fixes)\n- ARM: dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35 (git-fixes)\n- ARM: dts: meson: Fix the UART compatible strings (git-fixes)\n- ARM: dts: meson8: Fix the UART device-tree schema validation (git-fixes)\n- ARM: dts: meson8b: Fix the UART device-tree schema validation (git-fixes)\n- ARM: dts: qcom: ipq4019: fix sleep clock (git-fixes)\n- ARM: dts: qcom: msm8974: Drop flags for mdss irqs (git-fixes)\n- ARM: dts: suniv: F1C100: fix watchdog compatible (git-fixes)\n- ARM: ftrace: ensure that ADR takes the Thumb bit into account (git-fixes)\n- ARM: mediatek: select arch timer for mt7629 (git-fixes)\n- ARM: omap: remove debug-leds driver (git-fixes)\n- ARM: OMAP2+: Fix refcount leak in omap_gic_of_init (git-fixes)\n- ARM: socfpga: dts: fix qspi node compatible (git-fixes)\n- ARM: socfpga: fix missing RESET_CONTROLLER (git-fixes)\n- ARM: tegra: Move panels to AUX bus (git-fixes)\n- arm64: avoid fixmap race condition when create pud mapping (git-fixes)\n- arm64: dts: broadcom: Fix sata nodename (git-fixes)\n- arm64: dts: ns2: Fix spi-cpol and spi-cpha property (git-fixes)\n- arm64: dts: rockchip: Fix SDIO regulator supply properties on (git-fixes)\n- arm64: paravirt: Use RCU read locks to guard stolen_time (git-fixes).\n- arm64: pgtable: make __pte_to_phys/__phys_to_pte_val inline functions (git-fixes)\n- ASoC: atmel-classd: Remove endianness flag on class d component (git-fixes).\n- ASoC: atmel-pdmic: Remove endianness flag on pdmic component (git-fixes).\n- ASoC: da7219: Fix change notifications for tone generator frequency (git-fixes).\n- ASoC: dapm: Do not fold register value changes into notifications (git-fixes).\n- ASoC: dmaengine: Restore NULL prepare_slave_config() callback (git-fixes).\n- ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition (git-fixes).\n- ASoC: max98090: Generate notifications on changes for custom control (git-fixes).\n- ASoC: max98090: Move check for invalid values before casting in max98090_put_enab_tlv() (git-fixes).\n- ASoC: max98090: Reject invalid values in custom control put() (git-fixes).\n- ASoC: max98357a: remove dependency on GPIOLIB (git-fixes).\n- ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe (git-fixes).\n- ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe (git-fixes).\n- ASoC: meson: Fix event generation for G12A tohdmi mux (git-fixes).\n- ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe (git-fixes).\n- ASoC: ops: Validate input values in snd_soc_put_volsw_range() (git-fixes).\n- ASoC: rk3328: fix disabling mclk on pclk probe failure (git-fixes).\n- ASoC: rt5514: Fix event generation for \u0027DSP Voice Wake Up\u0027 control (git-fixes).\n- ASoC: rt5645: Fix errorenous cleanup order (git-fixes).\n- ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_* (git-fixes).\n- ASoC: tscs454: Add endianness flag in snd_soc_component_driver (git-fixes).\n- ASoC: wm2000: fix missing clk_disable_unprepare() on error in wm2000_anc_transition() (git-fixes).\n- ASoC: wm8958: Fix change notifications for DSP controls (git-fixes).\n- assoc_array: Fix BUG_ON during garbage collect (git-fixes).\n- ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files (git-fixes).\n- ata: pata_hpt37x: fix PCI clock detection (git-fixes).\n- ata: pata_marvell: Check the \u0027bmdma_addr\u0027 beforing reading (git-fixes).\n- ath9k_htc: fix potential out of bounds access with invalid rxstatus-\u003ers_keyix (git-fixes).\n- ath9k: fix ar9003_get_eepmisc (git-fixes).\n- ath9k: fix QCA9561 PA bias level (git-fixes).\n- b43: Fix assigning negative value to unsigned variable (git-fixes).\n- b43legacy: Fix assigning negative value to unsigned variable (git-fixes).\n- batman-adv: Do not skb_split skbuffs with frag_list (git-fixes).\n- blk-cgroup: move blkcg_{get,set}_fc_appid out of line (bsc#1200045).\n- blk-mq: fix tag_get wait task can\u0027t be awakened (bsc#1200263).\n- blk-mq: Fix wrong wakeup batch configuration which will cause hang (bsc#1200263).\n- block: fix bio_clone_blkg_association() to associate with proper blkcg_gq (bsc#1200259).\n- Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed (git-fixes).\n- Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout (git-fixes).\n- Bluetooth: Fix the creation of hdev-\u003ename (git-fixes).\n- Bluetooth: hci_qca: Use del_timer_sync() before freeing (git-fixes).\n- bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag (jsc#SLE-8371 bsc#1153274).\n- bnxt_en: Fix unnecessary dropping of RX packets (jsc#SLE-15075).\n- brcmfmac: sdio: Fix undefined behavior due to shift overflowing the constant (git-fixes).\n- btrfs: tree-checker: fix incorrect printk format (bsc#1200249).\n- bus: sunxi-rsb: Fix the return value of sunxi_rsb_device_create() (git-fixes).\n- bus: ti-sysc: Fix warnings for unbind for serial (git-fixes).\n- can: grcan: grcan_close(): fix deadlock (git-fixes).\n- can: grcan: use ofdev-\u003edev when allocating DMA memory (git-fixes).\n- carl9170: tx: fix an incorrect use of list iterator (git-fixes).\n- ceph: fix setting of xattrs on async created inodes (bsc#1200192).\n- cfg80211: set custom regdomain after wiphy registration (git-fixes).\n- cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp() (bsc#1199839).\n- clk: at91: generated: consider range when calculating best rate (git-fixes).\n- clk: bcm2835: fix bcm2835_clock_choose_div (git-fixes).\n- clk: imx8mp: fix usb_root_clk parent (git-fixes).\n- clk: renesas: r9a06g032: Fix the RTC hclock description (git-fixes).\n- clk: sunxi: sun9i-mmc: check return value after calling platform_get_resource() (git-fixes).\n- clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value (git-fixes).\n- clocksource/drivers/sp804: Avoid error on multiple instances (git-fixes).\n- copy_process(): Move fd_install() out of sighand-\u003esiglock critical section (bsc#1199626).\n- crypto: caam - fix i.MX6SX entropy delay value (git-fixes).\n- crypto: ecrdsa - Fix incorrect use of vli_cmp (git-fixes).\n- crypto: stm32 - fix reference leak in stm32_crc_remove (git-fixes).\n- crypto: x86 - eliminate anonymous module_init and module_exit (git-fixes).\n- crypto: x86/chacha20 - Avoid spurious jumps to other functions (git-fixes).\n- dim: initialize all struct fields (git-fixes).\n- dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace (git-fixes).\n- dmaengine: idxd: Fix the error handling path in idxd_cdev_register() (git-fixes).\n- dmaengine: stm32-mdma: remove GISR1 register (git-fixes).\n- dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type (git-fixes).\n- docs: powerpc: Fix misspellings and grammar errors (bsc#1055117 ltc#159753).\n- docs: submitting-patches: Fix crossref to \u0027The canonical patch format\u0027 (git-fixes).\n- drbd: fix an invalid memory access caused by incorrect use of list iterator (git-fixes).\n- drbd: fix duplicate array initializer (git-fixes).\n- drbd: Fix five use after free bugs in get_initial_state (git-fixes).\n- drbd: remove assign_p_sizes_qlim (git-fixes).\n- drbd: use bdev based limit helpers in drbd_send_sizes (git-fixes).\n- drbd: use bdev_alignment_offset instead of queue_alignment_offset (git-fixes).\n- driver core: fix deadlock in __device_attach (git-fixes).\n- driver: base: fix UAF when driver_attach failed (git-fixes).\n- drivers: base: cacheinfo: Get rid of DEFINE_SMP_CALL_CACHE_FUNCTION() (git-fixes)\n- drivers: i2c: thunderx: Allow driver to work with ACPI defined TWSI controllers (git-fixes).\n- drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop() (git-fixes).\n- drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop() (git-fixes).\n- drivers: tty: serial: Fix deadlock in sa1100_set_termios() (git-fixes).\n- drivers: usb: host: Fix deadlock in oxu_bus_suspend() (git-fixes).\n- drivers/base/memory: fix an unlikely reference counting issue in __add_memory_block() (git-fixes).\n- drivers/base/node.c: fix compaction sysfs file leak (git-fixes).\n- drm: imx: fix compiler warning with gcc-12 (git-fixes).\n- drm: mali-dp: potential dereference of null pointer (git-fixes).\n- drm: msm: fix error check return value of irq_of_parse_and_map() (git-fixes).\n- drm: msm: fix possible memory leak in mdp5_crtc_cursor_set() (git-fixes).\n- drm: sti: do not use kernel-doc markers (git-fixes).\n- drm/amd/display/dc/gpio/gpio_service: Pass around correct dce_{version, environment} types (git-fixes).\n- drm/amdgpu/cs: make commands with 0 chunks illegal behaviour (git-fixes).\n- drm/amdgpu/smu10: fix SoC/fclk units in auto mode (git-fixes).\n- drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo (git-fixes).\n- drm/amdkfd: Fix GWS queue count (git-fixes).\n- drm/atomic: Force bridge self-refresh-exit on CRTC switch (git-fixes).\n- drm/blend: fix typo in the comment (git-fixes).\n- drm/bridge: adv7511: clean up CEC adapter when probe fails (git-fixes).\n- drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX (git-fixes).\n- drm/bridge: analogix_dp: Support PSR-exit to disable transition (git-fixes).\n- drm/bridge: Fix error handling in analogix_dp_probe (git-fixes).\n- drm/edid: fix invalid EDID extension block filtering (git-fixes).\n- drm/i915: Fix -Wstringop-overflow warning in call to intel_read_wm_latency() (git-fixes).\n- drm/i915: Fix CFI violation with show_dynamic_id() (git-fixes).\n- drm/i915: fix i915_globals_exit() section mismatch error (git-fixes).\n- drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses (git-fixes).\n- drm/komeda: Fix an undefined behavior bug in komeda_plane_add() (git-fixes).\n- drm/komeda: return early if drm_universal_plane_init() fails (git-fixes).\n- drm/mediatek: Fix mtk_cec_mask() (git-fixes).\n- drm/msm: return an error pointer in msm_gem_prime_get_sg_table() (git-fixes).\n- drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init (git-fixes).\n- drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory free during pm runtime resume (git-fixes).\n- drm/msm/dpu: adjust display_v_end for eDP and DP (git-fixes).\n- drm/msm/dsi: fix address for second DSI PHY on SDM660 (git-fixes).\n- drm/msm/dsi: fix error checks and return values for DSI xmit functions (git-fixes).\n- drm/msm/hdmi: check return value after calling platform_get_resource_byname() (git-fixes).\n- drm/msm/hdmi: fix error check return value of irq_of_parse_and_map() (git-fixes).\n- drm/msm/mdp5: check the return of kzalloc() (git-fixes).\n- drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is detected (git-fixes).\n- drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected (git-fixes).\n- drm/nouveau: Fix a potential theorical leak in nouveau_get_backlight_name() (git-fixes).\n- drm/nouveau/clk: Fix an incorrect NULL check on list iterator (git-fixes).\n- drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator (git-fixes).\n- drm/nouveau/tegra: Stop using iommu_present() (git-fixes).\n- drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01 (git-fixes).\n- drm/plane: Move range check for format_count earlier (git-fixes).\n- drm/radeon: fix a possible null pointer dereference (git-fixes).\n- drm/rockchip: vop: fix possible null-ptr-deref in vop_bind() (git-fixes).\n- drm/vc4: hvs: Reset muxes at probe time (git-fixes).\n- drm/vc4: txp: Do not set TXP_VSTART_AT_EOF (git-fixes).\n- drm/vc4: txp: Force alpha to be 0xff if it\u0027s disabled (git-fixes).\n- drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes (git-fixes).\n- drm/vmwgfx: Initialize drm_mode_fb_cmd2 (git-fixes).\n- EDAC/synopsys: Read the error count from the correct register (bsc#1178134).\n- efi: Add missing prototype for efi_capsule_setup_info (git-fixes).\n- efi: Do not import certificates from UEFI Secure Boot for T2 Macs (git-fixes).\n- fbcon: Consistently protect deferred_takeover with console_lock() (git-fixes).\n- firewire: core: extend card-\u003elock in fw_core_handle_bus_reset (git-fixes).\n- firewire: fix potential uaf in outbound_phy_packet_callback() (git-fixes).\n- firewire: remove check of list iterator against head past the loop body (git-fixes).\n- firmware: arm_scmi: Fix list protocols enumeration in the base protocol (git-fixes).\n- firmware: arm_scmi: Validate BASE_DISCOVER_LIST_PROTOCOLS response (git-fixes).\n- firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle (git-fixes).\n- firmware: stratix10-svc: fix a missing check on list iterator (git-fixes).\n- ftrace: Clean up hash direct_functions on register failures (git-fixes).\n- genirq: Fix reference leaks on irq affinity notifiers (git-fixes)\n- genirq: Let GENERIC_IRQ_IPI select IRQ_DOMAIN_HIERARCHY (git-fixes)\n- genirq/affinity: Consider that CPUs on nodes can be (git-fixes)\n- genirq/affinity: Handle affinity setting on inactive (git-fixes)\n- genirq/msi: Ensure deactivation on teardown (git-fixes)\n- genirq/proc: Reject invalid affinity masks (again) (git-fixes)\n- genirq/timings: Fix error return code in (git-fixes)\n- genirq/timings: Prevent potential array overflow in (git-fixes)\n- gma500: fix an incorrect NULL check on list iterator (git-fixes).\n- gpio: adp5588: Remove support for platform setup and teardown callbacks (git-fixes).\n- gpio: gpio-vf610: do not touch other bits when set the target bit (git-fixes).\n- gpio: mvebu/pwm: Refuse requests with inverted polarity (git-fixes).\n- gpio: pca953x: fix irq_stat not updated when irq is disabled (irq_mask not set) (git-fixes).\n- gpio: pca953x: use the correct register address to do regcache sync (git-fixes).\n- gpiolib: of: fix bounds check for \u0027gpio-reserved-ranges\u0027 (git-fixes).\n- hex2bin: fix access beyond string end (git-fixes).\n- HID: bigben: fix slab-out-of-bounds Write in bigben_probe (git-fixes).\n- HID: elan: Fix potential double free in elan_input_configured (git-fixes).\n- HID: hid-led: fix maximum brightness for Dream Cheeky (git-fixes).\n- HID: multitouch: Add support for Google Whiskers Touchpad (git-fixes).\n- hinic: fix bug of wq out of bound access (bsc#1176447).\n- hwmon: (f71882fg) Fix negative temperature (git-fixes).\n- hwmon: (ltq-cputemp) restrict it to SOC_XWAY (git-fixes).\n- hwmon: (tmp401) Add OF device ID table (git-fixes).\n- hwmon: Make chip parameter for with_info API mandatory (git-fixes).\n- i2c: at91: Initialize dma_buf in at91_twi_xfer() (git-fixes).\n- i2c: at91: use dma safe buffers (git-fixes).\n- i2c: cadence: Increase timeout per message if necessary (git-fixes).\n- i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging (git-fixes).\n- i2c: mt7621: fix missing clk_disable_unprepare() on error in mtk_i2c_probe() (git-fixes).\n- i40e: stop disabling VFs due to PF error responses (git-fixes).\n- ice: arfs: fix use-after-free when freeing @rx_cpu_rmap (jsc#SLE-12878).\n- ice: Clear default forwarding VSI during VSI release (jsc#SLE-12878).\n- ice: Do not skip not enabled queues in ice_vc_dis_qs_msg (jsc#SLE-7926).\n- ice: Fix race conditions between virtchnl handling and VF ndo ops (git-fixes).\n- ice: synchronize_rcu() when terminating rings (jsc#SLE-7926).\n- iio: adc: ad7124: Remove shift from scan_type (git-fixes).\n- iio: adc: sc27xx: Fine tune the scale calibration values (git-fixes).\n- iio: adc: sc27xx: fix read big scale voltage not right (git-fixes).\n- iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check (git-fixes).\n- iio: dac: ad5446: Fix read_raw not returning set value (git-fixes).\n- iio: dac: ad5592r: Fix the missing return value (git-fixes).\n- iio: dummy: iio_simple_dummy: check the return value of kstrdup() (git-fixes).\n- iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on() (git-fixes).\n- Input: add bounds checking to input_set_capability() (git-fixes).\n- Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag (git-fixes).\n- Input: goodix - fix spurious key release events (git-fixes).\n- Input: ili210x - fix reset timing (git-fixes).\n- Input: sparcspkr - fix refcount leak in bbc_beep_probe (git-fixes).\n- Input: stmfts - do not leave device disabled in stmfts_input_open (git-fixes).\n- Input: stmfts - fix reference leak in stmfts_input_open (git-fixes).\n- iommu/amd: Increase timeout waiting for GA log enablement (bsc#1199052).\n- ionic: avoid races in ionic_heartbeat_check (bsc#1167773).\n- ionic: Cleanups in the Tx hotpath code (bsc#1167773).\n- ionic: disable napi when ionic_lif_init() fails (bsc#1167773).\n- ionic: Do not send reset commands if FW isn\u0027t running (bsc#1167773).\n- ionic: fix missing pci_release_regions() on error in ionic_probe() (bsc#1167773).\n- ionic: fix type complaint in ionic_dev_cmd_clean() (jsc#SLE-16649).\n- ionic: monitor fw status generation (bsc#1167773).\n- ionic: remove the dbid_inuse bitmap (bsc#1167773).\n- ionic: start watchdog after all is setup (bsc#1167773).\n- ipw2x00: Fix potential NULL dereference in libipw_xmit() (git-fixes).\n- irqchip: irq-xtensa-mx: fix initial IRQ affinity (git-fixes).\n- irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x (git-fixes).\n- irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value (git-fixes).\n- irqchip/exiu: Fix acknowledgment of edge triggered interrupts (git-fixes).\n- ivtv: fix incorrect device_caps for ivtvfb (git-fixes).\n- iwlwifi: iwl-dbg: Use del_timer_sync() before freeing (git-fixes).\n- iwlwifi: mvm: fix assert 1F04 upon reconfig (git-fixes).\n- iwlwifi: mvm: fix the return type for DSM functions 1 and 2 (git-fixes).\n- jbd2: Fake symbols defined under CONFIG_JBD2_DEBUG (bsc#1198971).\n- kABI: ivtv: restore caps member (git-fixes).\n- Kconfig.debug: drop selecting non-existing HARDLOCKUP_DETECTOR_ARCH (git-fixes).\n- KVM: fix wrong exception emulation in check_rdtsc (git-fixes).\n- KVM: nVMX: Invalidate all roots when emulating INVVPID without EPT (git-fixes).\n- KVM: nVMX: Query current VMCS when determining if MSR bitmaps are in use (git-fixes).\n- KVM: nVMX: Set LDTR to its architecturally defined value on nested VM-Exit (git-fixes).\n- KVM: nVMX: Unconditionally clear nested.pi_pending on nested VM-Enter (git-fixes).\n- KVM: PPC: Fix TCE handling for VFIO (bsc#1061840 git-fixes).\n- KVM: s390: pv: add macros for UVC CC values (git-fixes).\n- KVM: s390: pv: avoid double free of sida page (git-fixes).\n- KVM: s390: pv: avoid stalls for kvm_s390_pv_init_vm (git-fixes).\n- KVM: s390: vsie/gmap: reduce gmap_rmap overhead (git-fixes).\n- KVM: VMX: Fix stale docs for kvm-intel.emulate_invalid_guest_state (git-fixes).\n- KVM: VMX: Flush all EPTP/VPID contexts on remote TLB flush (git-fixes).\n- KVM: VMX: Use current VMCS to query WAITPKG support for MSR emulation (git-fixes).\n- KVM: x86: clflushopt should be treated as a no-op by emulation (git-fixes).\n- KVM: x86: Do not force set BSP bit when local APIC is managed by userspace (git-fixes).\n- KVM: x86: Fix emulation in writing cr8 (git-fixes).\n- KVM: x86: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce (git-fixes).\n- KVM: x86: Immediately reset the MMU context when the SMM flag is cleared (git-fixes).\n- KVM: x86: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode (git-fixes).\n- KVM: x86: Mark CR4.TSD as being possibly owned by the guest (git-fixes).\n- KVM: x86: Migrate the PIT only if vcpu0 is migrated, not any BSP (git-fixes).\n- KVM: x86: Toggling CR4.PKE does not load PDPTEs in PAE mode (git-fixes).\n- KVM: x86: Toggling CR4.SMAP does not load PDPTEs in PAE mode (git-fixes).\n- KVM: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU (git-fixes).\n- KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor() (git-fixes).\n- KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] (git-fixes).\n- lan743x: fix rx_napi_poll/interrupt ping-pong (git-fixes).\n- lan743x: remove redundant assignment to variable rx_process_result (git-fixes).\n- lib/raid6/test: fix multiple definition linking error (git-fixes).\n- lpfc: Readd update to version 14.2.0.1 (bsc#1197675 bsc#1196478 bsc#1198989) The update was reverted due to some regression on older hardware. These have been fixed in the meantime, thus update the driver.\n- mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection (git-fixes).\n- mac80211: fix rx reordering with non explicit / psmp ack policy (git-fixes).\n- mac80211: Reset MBSSID parameters upon connection (git-fixes).\n- mac80211: upgrade passive scan to active scan on DFS channels after beacon rx (git-fixes).\n- md: fix an incorrect NULL check in does_sb_need_changing (git-fixes).\n- md: fix an incorrect NULL check in md_reload_sb (git-fixes).\n- media: cx25821: Fix the warning when removing the module (git-fixes).\n- media: davinci: Make use of the helper function devm_platform_ioremap_resource() (git-fixes).\n- media: davinci: vpif: fix unbalanced runtime PM enable (git-fixes).\n- media: davinci: vpif: fix use-after-free on driver unbind (git-fixes).\n- media: media-entity.h: Fix documentation for media_create_intf_link (git-fixes).\n- media: netup_unidvb: Do not leak SPI master in probe error path (git-fixes).\n- media: ov7670: remove ov7670_power_off from ov7670_remove (git-fixes).\n- media: pci: cx23885: Fix the error handling in cx23885_initdev() (git-fixes).\n- media: platform: add missing put_device() call in mtk_jpeg_probe() and mtk_jpeg_remove() (git-fixes).\n- media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init (git-fixes).\n- media: saa7134: fix incorrect use to determine if list is empty (git-fixes).\n- media: uvcvideo: Fix missing check to determine if element is found in list (git-fixes).\n- media: venus: hfi: avoid null dereference in deinit (git-fixes).\n- media: videobuf2: Fix the size printk format (git-fixes).\n- media: vim2m: Register video device after setting up internals (git-fixes).\n- mfd: ipaq-micro: Fix error check return value of platform_get_irq() (git-fixes).\n- misc: ocxl: fix possible double free in ocxl_file_register_afu (git-fixes).\n- misc: rtsx: set NULL intfdata when probe fails (git-fixes).\n- mm, page_alloc: fix build_zonerefs_node() (git-fixes).\n- mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove() (jsc#SLE-15176, jsc#SLE-16387).\n- mmc: block: Fix CQE recovery reset success (git-fixes).\n- mmc: block: Use generic_cmd6_time when modifying INAND_CMD38_ARG_EXT_CSD (git-fixes).\n- mmc: core: Specify timeouts for BKOPS and CACHE_FLUSH for eMMC (git-fixes).\n- mmc: jz4740: Apply DMA engine limits to maximum segment size (git-fixes).\n- modpost: fix removing numeric suffixes (git-fixes).\n- modpost: fix undefined behavior of is_arm_mapping_symbol() (git-fixes).\n- mt76: check return value of mt76_txq_send_burst in mt76_txq_schedule_list (git-fixes).\n- mt76: Fix undefined behavior due to shift overflowing the constant (git-fixes).\n- mt76: mt7663s: fix rx buffer refcounting (git-fixes).\n- mtd: rawnand: fix ecc parameters for mt7622 (git-fixes).\n- mtd: rawnand: Fix return value check of wait_for_completion_timeout (git-fixes).\n- mtd: spi-nor: core: Check written SR value in spi_nor_write_16bit_sr_and_check() (git-fixes).\n- mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue (git-fixes).\n- net: bcmgenet: Fix a resource leak in an error handling path in the probe functin (git-fixes).\n- net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for internal PHYs (git-fixes).\n- net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access (git-fixes).\n- net: ethernet: Fix memleak in ethoc_probe (git-fixes).\n- net: ethernet: ti: cpts: fix ethtool output when no ptp_clock registered (git-fixes).\n- net: hdlc_ppp: Fix issues when mod_timer is called while timer is running (git-fixes).\n- net: hns3: add a check for index in hclge_get_rss_key() (git-fixes).\n- net: hns3: clear inited state and stop client after failed to register netdev (bsc#1154353).\n- net: hns3: fix bug when PF set the duplicate MAC address for VFs (jsc#SLE-14777).\n- net: hns3: fix kernel crash when unload VF while it is being reset (git-fixes).\n- net: korina: fix return value (git-fixes).\n- net: rtlwifi: properly check for alloc_workqueue() failure (git-fixes).\n- net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog (bsc#1183405).\n- net: stmmac: dwmac-sun8i: Balance internal PHY power (git-fixes).\n- net: stmmac: dwmac-sun8i: Balance internal PHY resource references (git-fixes).\n- net: stmmac: dwmac-sun8i: Balance syscon (de)initialization (git-fixes).\n- net: stmmac: dwmac-sun8i: Fix probe error handling (git-fixes).\n- net/mlx5: Fix a race on command flush flow (jsc#SLE-15172).\n- net/mlx5e: Fix the calling of update_buffer_lossy() API (jsc#SLE-15172).\n- netdevice: demote the type of some dev_addr_set() helpers (bsc#1200216).\n- netfilter: conntrack: connection timeout after re-register (bsc#1199035).\n- netfilter: conntrack: move synack init code to helper (bsc#1199035).\n- netfilter: conntrack: re-init state for retransmitted syn-ack (bsc#1199035).\n- netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (bsc#1199035).\n- netfilter: nf_conntrack_tcp: re-init for syn packets only (bsc#1199035).\n- netfilter: nft_set_rbtree: overlap detection with element re-addition after deletion (bsc#1176447).\n- NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx (git-fixes).\n- NFC: nci: fix sleep in atomic context bugs caused by nci_skb_alloc (git-fixes).\n- NFC: netlink: fix sleep in atomic bug when firmware download timeout (git-fixes).\n- NFC: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs (git-fixes).\n- NFC: NULL out the dev-\u003erfkill to prevent UAF (git-fixes).\n- NFC: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION (git-fixes).\n- NFC: st21nfca: fix incorrect validating logic in EVT_TRANSACTION (git-fixes).\n- NFC: st21nfca: fix memory leaks in EVT_TRANSACTION handling (git-fixes).\n- NFS: Do not report ENOSPC write errors twice (git-fixes).\n- NFS: limit use of ACCESS cache for negative responses (bsc#1196570).\n- nfsd: Fix null-ptr-deref in nfsd_fill_super() (git-fixes).\n- NFSv4: Do not invalidate inode attributes on delegation return (git-fixes).\n- nl80211: show SSID for P2P_GO interfaces (git-fixes).\n- nvdimm/region: always show the \u0027align\u0027 attribute (bsc#1199114).\n- nvme-tcp: allow selecting the network interface for connections (bsc#1199670).\n- nvme-tcp: use __dev_get_by_name instead dev_get_by_name for OPT_HOST_IFACE (bsc#1199670).\n- objtool: Fix type of reloc::addend (git-fixes).\n- PCI: aardvark: Clear all MSIs at setup (git-fixes).\n- PCI: cadence: Fix find_first_zero_bit() limit (git-fixes).\n- PCI: Do not enable AtomicOps on VFs (git-fixes).\n- PCI: dwc: Fix setting error return on MSI DMA mapping failure (git-fixes).\n- PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314).\n- PCI: hv: Fix NUMA node assignment when kernel boots with custom NUMA topology (bsc#1199365).\n- PCI: imx6: Fix PERST# start-up sequence (git-fixes).\n- PCI: iproc: Set affinity mask on MSI interrupts (git-fixes).\n- PCI: qcom: Fix runtime PM imbalance on probe errors (git-fixes).\n- PCI: qcom: Fix unbalanced PHY init on probe errors (git-fixes).\n- PCI: rockchip: Fix find_first_zero_bit() limit (git-fixes).\n- PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits (git-fixes).\n- PCI/PM: Power up all devices during runtime resume (git-fixes).\n- pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards (git-fixes).\n- phy: mapphone-mdm6600: Fix PM error handling in phy_mdm6600_probe (git-fixes).\n- phy: qcom-qmp: fix pipe-clock imbalance on power-on failure (git-fixes).\n- phy: qcom-qmp: fix reset-controller leak on probe errors (git-fixes).\n- phy: qcom-qmp: fix struct clk leak on probe errors (git-fixes).\n- phy: samsung: exynos5250-sata: fix missing device put in probe error paths (git-fixes).\n- phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe (git-fixes).\n- phy: ti: Add missing pm_runtime_disable() in serdes_am654_probe (git-fixes).\n- phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks (git-fixes).\n- pinctrl: mvebu: Fix irq_of_parse_and_map() return value (git-fixes).\n- pinctrl: pistachio: fix use of irq_of_parse_and_map() (git-fixes).\n- pinctrl: rockchip: fix RK3308 pinmux bits (git-fixes).\n- pinctrl: sunxi: fix f1c100s uart2 function (git-fixes).\n- pinctrl/rockchip: support deferring other gpio params (git-fixes).\n- ping: fix the sk_bound_dev_if match in ping_lookup (bsc#1195826).\n- ping: remove pr_err from ping_lookup (bsc#1195826).\n- platform/chrome: cros_ec_debugfs: detach log reader wq from devm (git-fixes).\n- platform/chrome: cros_ec_proto: Send command again when timeout occurs (git-fixes).\n- platform/x86: samsung-laptop: Fix an unsigned comparison which can never be negative (git-fixes).\n- platform/x86: wmi: Fix driver-\u003enotify() vs -\u003eprobe() race (git-fixes).\n- platform/x86: wmi: Replace read_takes_no_args with a flags field (git-fixes).\n- PM / devfreq: rk3399_dmc: Disable edev on remove() (git-fixes).\n- powerpc: Enable the DAWR on POWER9 DD2.3 and above (bsc#1055117 ltc#159753).\n- powerpc/64s: Add CPU_FTRS_POWER10 to ALWAYS mask (jsc#SLE-13521 git-fixes).\n- powerpc/64s: Add CPU_FTRS_POWER9_DD2_2 to CPU_FTRS_ALWAYS mask (bsc#1061840 git-fixes).\n- powerpc/64s/radix: Fix huge vmap false positive (bsc#1156395).\n- powerpc/fadump: fix PT_LOAD segment for boot memory area (bsc#1103269 ltc#169948 git-fixes).\n- powerpc/powernv: Add __init attribute to eligible functions (bsc#1188885 ltc#193722 git-fixes).\n- powerpc/powernv: Get L1D flush requirements from device-tree (bsc#1188885 ltc#193722 git-fixes).\n- powerpc/powernv: Get STF barrier requirements from device-tree (bsc#1188885 ltc#193722 git-fixes).\n- powerpc/powernv: Remove POWER9 PVR version check for entry and uaccess flushes (bsc#1188885 ltc#193722 git-fixes).\n- powerpc/xive: Add some error handling code to \u0027xive_spapr_init()\u0027 (git-fixes).\n- powerpc/xive: Fix refcount leak in xive_spapr_init (git-fixes).\n- pwm: lp3943: Fix duty calculation in case period was clamped (git-fixes).\n- pwm: raspberrypi-poe: Fix endianness in firmware struct (git-fixes).\n- qlcnic: Fix error code in probe (git-fixes).\n- raid5: introduce MD_BROKEN (git-fixes).\n- regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET (git-fixes).\n- regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt (git-fixes).\n- rtc: fix use-after-free on device removal (git-fixes).\n- rtc: mc146818-lib: Fix the AltCentury for AMD platforms (git-fixes).\n- rtc: mt6397: check return value after calling platform_get_resource() (git-fixes).\n- rtl818x: Prevent using not initialized queues (git-fixes).\n- rtlwifi: Use pr_warn instead of WARN_ONCE (git-fixes).\n- s390: fix detection of vector enhancements facility 1 vs. vector packed decimal facility (git-fixes).\n- s390: fix strrchr() implementation (git-fixes).\n- s390/cio: dont call css_wait_for_slow_path() inside a lock (git-fixes).\n- s390/cio: Fix the \u0027type\u0027 field in s390_cio_tpi tracepoint (git-fixes).\n- s390/crypto: fix scatterwalk_unmap() callers in AES-GCM (git-fixes).\n- s390/ctcm: fix potential memory leak (git-fixes).\n- s390/ctcm: fix variable dereferenced before check (git-fixes).\n- s390/dasd: fix data corruption for ESE devices (bsc#1200207 LTC#198454).\n- s390/dasd: Fix read for ESE with blksize 4k (bsc#1200206 LTC#198455).\n- s390/dasd: Fix read inconsistency for ESE DASD devices (bsc#1200206 LTC#198455).\n- s390/dasd: prevent double format of tracks for ESE devices (bsc#1200207 LTC#198454).\n- s390/ftrace: fix ftrace_update_ftrace_func implementation (git-fixes).\n- s390/lcs: fix variable dereferenced before check (git-fixes).\n- s390/mcck: fix invalid KVM guest condition check (git-fixes).\n- s390/mcck: isolate SIE instruction when setting CIF_MCCK_GUEST flag (git-fixes).\n- s390/nmi: handle guarded storage validity failures for KVM guests (git-fixes).\n- s390/nmi: handle vector validity failures for KVM guests (git-fixes).\n- s390/pv: fix the forcing of the swiotlb (git-fixes).\n- s390/qdio: cancel the ESTABLISH ccw after timeout (git-fixes).\n- s390/qdio: fix roll-back after timeout on ESTABLISH ccw (git-fixes).\n- s390/vfio-ap: fix circular lockdep when setting/clearing crypto masks (git-fixes).\n- sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl (git-fixes).\n- sata_fsl: fix warning in remove_proc_entry when rmmod sata_fsl (git-fixes).\n- sched/pelt: Fix attach_entity_load_avg() corner case (git-fixes)\n- sched/topology: Skip updating masks for non-online nodes (bsc#1197446 ltc#183000).\n- scsi: dc395x: Fix a missing check on list iterator (git-fixes).\n- scsi: fnic: Fix a tracing statement (git-fixes).\n- scsi: fnic: Replace DMA mask of 64 bits with 47 bits (bsc#1199631).\n- scsi: hisi_sas: Change permission of parameter prot_mask (git-fixes).\n- scsi: lpfc: Alter FPIN stat accounting logic (bsc#1200045).\n- scsi: lpfc: Change FA-PWWN detection methodology (bsc#1200045).\n- scsi: lpfc: Change VMID registration to be based on fabric parameters (bsc#1200045).\n- scsi: lpfc: Clear fabric topology flag before initiating a new FLOGI (bsc#1200045).\n- scsi: lpfc: Copyright updates for 14.2.0.2 patches (bsc#1200045).\n- scsi: lpfc: Correct BDE DMA address assignment for GEN_REQ_WQE (bsc#1200045 bsc#1198989 bsc#1197675).\n- scsi: lpfc: Correct CRC32 calculation for congestion stats (bsc#1200045).\n- scsi: lpfc: Decrement outstanding gidft_inp counter if lpfc_err_lost_link() (bsc#1200045).\n- scsi: lpfc: Expand setting ELS_ID field in ELS_REQUEST64_WQE (bsc#1200045).\n- scsi: lpfc: Fill in missing ndlp kref puts in error paths (bsc#1200045).\n- scsi: lpfc: Fix additional reference counting in lpfc_bsg_rport_els() (bsc#1200045).\n- scsi: lpfc: Fix call trace observed during I/O with CMF enabled (bsc#1200045).\n- scsi: lpfc: Fix diagnostic fw logging after a function reset (bsc#1200045).\n- scsi: lpfc: Fix dmabuf ptr assignment in lpfc_ct_reject_event() (bsc#1200045).\n- scsi: lpfc: Fix element offset in __lpfc_sli_release_iocbq_s4() (bsc#1200045).\n- scsi: lpfc: Fix field overload in lpfc_iocbq data structure (bsc#1200045).\n- scsi: lpfc: Fix ndlp put following a LOGO completion (bsc#1200045).\n- scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and PLOGI (bsc#1200045).\n- scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp() (bsc#1200045).\n- scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock (bsc#1200045).\n- scsi: lpfc: Fix split code for FLOGI on FCoE (bsc#1200045 bsc#1198989 bsc#1197675).\n- scsi: lpfc: Inhibit aborts if external loopback plug is inserted (bsc#1200045).\n- scsi: lpfc: Introduce FC_RSCN_MEMENTO flag for tracking post RSCN completion (bsc#1200045).\n- scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg() (bsc#1200045).\n- scsi: lpfc: Move MI module parameter check to handle dynamic disable (bsc#1200045).\n- scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT (bsc#1200045).\n- scsi: lpfc: Refactor cleanup of mailbox commands (bsc#1200045).\n- scsi: lpfc: Register for Application Services FC-4 type in Fabric topology (bsc#1200045).\n- scsi: lpfc: Remove false FDMI NVMe FC-4 support for NPIV ports (bsc#1200045).\n- scsi: lpfc: Remove redundant lpfc_sli_prep_wqe() call (bsc#1200045).\n- scsi: lpfc: Remove unnecessary null ndlp check in lpfc_sli_prep_wqe() (bsc#1200045).\n- scsi: lpfc: Remove unnecessary NULL pointer assignment for ELS_RDF path (bsc#1200045).\n- scsi: lpfc: Remove unneeded variable (bsc#1200045).\n- scsi: lpfc: Requeue SCSI I/O to upper layer when fw reports link down (bsc#1200045).\n- scsi: lpfc: Revise FDMI reporting of supported port speed for trunk groups (bsc#1200045).\n- scsi: lpfc: Rework FDMI initialization after link up (bsc#1200045).\n- scsi: lpfc: Transition to NPR state upon LOGO cmpl if link down or aborted (bsc#1200045).\n- scsi: lpfc: Tweak message log categories for ELS/FDMI/NVMe rescan (bsc#1200045).\n- scsi: lpfc: Update fc_prli_sent outstanding only after guaranteed IOCB submit (bsc#1200045).\n- scsi: lpfc: Update lpfc version to 14.2.0.2 (bsc#1200045).\n- scsi: lpfc: Update lpfc version to 14.2.0.3 (bsc#1200045).\n- scsi: lpfc: Update stat accounting for READ_STATUS mbox command (bsc#1200045).\n- scsi: lpfc: Use list_for_each_entry_safe() in rscn_recovery_check() (bsc#1200045).\n- scsi: lpfc: Use sg_dma_address() and sg_dma_len() macros for NVMe I/O (bsc#1200045).\n- scsi: lpfc: Zero SLI4 fcp_cmnd buffer\u0027s fcpCntl0 field (bsc#1200045).\n- scsi: pm8001: Fix abort all task initialization (git-fixes).\n- scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req() (git-fixes).\n- scsi: pm8001: Fix command initialization in pm80XX_send_read_log() (git-fixes).\n- scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req() (git-fixes).\n- scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req() (git-fixes).\n- scsi: pm8001: Fix le32 values handling in pm80xx_set_sas_protocol_timer_config() (git-fixes).\n- scsi: pm8001: Fix NCQ NON DATA command completion handling (git-fixes).\n- scsi: pm8001: Fix NCQ NON DATA command task initialization (git-fixes).\n- scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update() (git-fixes).\n- scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config() (git-fixes).\n- scsi: pm80xx: Enable upper inbound, outbound queues (git-fixes).\n- scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63 (git-fixes).\n- scsi: qla2xxx: edif: Remove unneeded variable (bsc#1200046).\n- scsi: qla2xxx: Fix missed DMA unmap for aborted commands (bsc#1200046).\n- scsi: qla2xxx: Remove free_sg command flag (bsc#1200046).\n- scsi: qla2xxx: Remove unneeded flush_workqueue() (bsc#1200046).\n- scsi: sr: Do not leak information in ioctl (git-fixes).\n- scsi: ufs: core: Exclude UECxx from SFR dump list (git-fixes).\n- scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled (git-fixes).\n- scsi: ufs: qcom: Fix ufs_qcom_resume() (git-fixes).\n- scsi: virtio-scsi: Eliminate anonymous module_init and module_exit (git-fixes).\n- scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() (git-fixes).\n- selftests: firmware: Use smaller dictionary for XZ compression (git-fixes).\n- serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485 (git-fixes).\n- serial: 8250_mtk: Fix register address for XON/XOFF character (git-fixes).\n- serial: 8250_mtk: Fix UART_EFR register address (git-fixes).\n- serial: 8250: Also set sticky MCR bits in console restoration (git-fixes).\n- serial: 8250: core: Remove unneeded linux/pm_runtime.h (git-fixes).\n- serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device (git-fixes).\n- serial: 8250: pxa: Remove unneeded linux/pm_runtime.h (git-fixes).\n- serial: digicolor-usart: Do not allow CS5-6 (git-fixes).\n- serial: imx: fix overrun interrupts in DMA mode (git-fixes).\n- serial: meson: acquire port-\u003elock in startup() (git-fixes).\n- serial: msm_serial: disable interrupts in __msm_console_write() (git-fixes).\n- serial: pch: do not overwrite xmit-\u003ebuf[0] by x_char (git-fixes).\n- serial: rda-uart: Do not allow CS5-6 (git-fixes).\n- serial: sh-sci: Do not allow CS5-6 (git-fixes).\n- serial: sifive: Sanitize CSIZE and c_iflag (git-fixes).\n- serial: st-asc: Sanitize CSIZE and correct PARENB for CS7 (git-fixes).\n- serial: stm32-usart: Correct CSIZE, bits, and parity (git-fixes).\n- serial: txx9: Do not allow CS5-6 (git-fixes).\n- slimbus: qcom: Fix IRQ check in qcom_slim_probe (git-fixes).\n- smp: Fix offline cpu check in flush_smp_call_function_queue() (git-fixes).\n- smsc911x: allow using IRQ0 (git-fixes).\n- soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc (git-fixes).\n- soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc (git-fixes).\n- soc: rockchip: Fix refcount leak in rockchip_grf_init (git-fixes).\n- spi: img-spfi: Fix pm_runtime_get_sync() error checking (git-fixes).\n- spi: Introduce device-managed SPI controller allocation (git-fixes).\n- spi: spi-cadence: Fix kernel-doc format for resume/suspend (git-fixes).\n- spi: spi-fsl-qspi: check return value after calling platform_get_resource_byname() (git-fixes).\n- spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA direction (git-fixes).\n- spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout (git-fixes).\n- spi: stm32-qspi: Fix wait_cmd timeout in APM mode (git-fixes).\n- staging: fieldbus: Fix the error handling path in anybuss_host_common_probe() (git-fixes).\n- staging: rtl8712: fix uninit-value in r871xu_drv_init() (git-fixes).\n- staging: rtl8712: fix uninit-value in usb_read8() and friends (git-fixes).\n- SUNRPC: Ensure gss-proxy connects on setup (git-fixes).\n- SUNRPC: Ensure that the gssproxy client can start in a connected state (git-fixes).\n- thermal: int340x: Fix attr.show callback prototype (git-fixes).\n- thermal/drivers/bcm2711: Do not clamp temperature at zero (git-fixes).\n- thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe (git-fixes).\n- tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator (git-fixes).\n- timekeeping: Really make sure wall_to_monotonic isn\u0027t (git-fixes)\n- timers: Fix warning condition in __run_timers() (git-fixes)\n- tpm: Fix buffer access in tpm2_get_tpm_pt() (git-fixes).\n- tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe() (bsc#1065729).\n- tracing: Fix potential double free in create_var_ref() (git-fixes).\n- tracing: Fix return value of trace_pid_write() (git-fixes).\n- tty: Fix a possible resource leak in icom_probe (git-fixes).\n- tty: fix deadlock caused by calling printk() under tty_port-\u003elock (git-fixes).\n- tty: goldfish: Use tty_port_destroy() to destroy port (git-fixes).\n- tty: serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe() (git-fixes).\n- tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id and ida_simple_get (git-fixes).\n- tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe (git-fixes).\n- tty: synclink_gt: Fix null-pointer-dereference in slgt_clean() (git-fixes).\n- usb: cdc-wdm: fix reading stuck on device close (git-fixes).\n- usb: core: hcd: Add support for deferring roothub registration (git-fixes).\n- usb: dwc2: gadget: do not reset gadget\u0027s driver-\u003ebus (git-fixes).\n- usb: dwc3: pci: Fix pm_runtime_get_sync() error checking (git-fixes).\n- usb: ehci-omap: drop unused ehci_read() function (git-fixes).\n- usb: gadget: configfs: clear deactivation flag in configfs_composite_unbind() (git-fixes).\n- usb: hcd-pci: Fully suspend across freeze/thaw cycle (git-fixes).\n- usb: host: isp116x: check return value after calling platform_get_resource() (git-fixes).\n- usb: misc: fix improper handling of refcount in uss720_probe() (git-fixes).\n- usb: mtu3: fix USB 3.0 dual-role-switch from device to host (git-fixes).\n- usb: musb: Fix missing of_node_put() in omap2430_probe (git-fixes).\n- usb: new quirk for Dell Gen 2 devices (git-fixes).\n- usb: quirks: add a Realtek card reader (git-fixes).\n- usb: quirks: add STRING quirk for VCOM device (git-fixes).\n- usb: serial: cp210x: add PIDs for Kamstrup USB Meter Reader (git-fixes).\n- usb: serial: option: add Fibocom L610 modem (git-fixes).\n- usb: serial: option: add Fibocom MA510 modem (git-fixes).\n- usb: serial: option: add Quectel BG95 modem (git-fixes).\n- usb: serial: option: add support for Cinterion MV32-WA/MV32-WB (git-fixes).\n- usb: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions (git-fixes).\n- usb: serial: pl2303: add device id for HP LM930 Display (git-fixes).\n- usb: serial: qcserial: add support for Sierra Wireless EM7590 (git-fixes).\n- usb: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS (git-fixes).\n- usb: storage: karma: fix rio_karma_init return (git-fixes).\n- usb: typec: mux: Check dev_set_name() return value (git-fixes).\n- usb: typec: tcpci: Do not skip cleanup in .remove() on error (git-fixes).\n- usb: typec: ucsi: Fix reuse of completion structure (git-fixes).\n- usb: typec: ucsi: Fix role swapping (git-fixes).\n- usb: usbip: add missing device lock on tweak configuration cmd (git-fixes).\n- usb: usbip: fix a refcount leak in stub_probe() (git-fixes).\n- vfio-ccw: Check initialized flag in cp_init() (git-fixes).\n- vfio/ccw: Remove unneeded GFP_DMA (git-fixes).\n- video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup (git-fixes).\n- video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove() (git-fixes).\n- virtio/s390: implement virtio-ccw revision 2 correctly (git-fixes).\n- vringh: Fix loop descriptors check in the indirect cases (git-fixes).\n- watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe (git-fixes).\n- watchdog: wdat_wdt: Stop watchdog when rebooting the system (git-fixes).\n- wifi: mac80211: fix use-after-free in chanctx code (git-fixes).\n- wireguard: device: check for metadata_dst with skb_valid_dst() (git-fixes).\n- xhci: increase usb U3 -\u003e U0 link resume timeout from 100ms to 500ms (git-fixes).\n- xhci: stop polling roothubs after shutdown (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-Micro-5.2-2022-2177",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_2177-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2022:2177-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/S2QMD6CJ6PZDFYQ3RKSOGAZNRK7WC5W7/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2022:2177-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/S2QMD6CJ6PZDFYQ3RKSOGAZNRK7WC5W7/"
},
{
"category": "self",
"summary": "SUSE Bug 1055117",
"url": "https://bugzilla.suse.com/1055117"
},
{
"category": "self",
"summary": "SUSE Bug 1061840",
"url": "https://bugzilla.suse.com/1061840"
},
{
"category": "self",
"summary": "SUSE Bug 1065729",
"url": "https://bugzilla.suse.com/1065729"
},
{
"category": "self",
"summary": "SUSE Bug 1103269",
"url": "https://bugzilla.suse.com/1103269"
},
{
"category": "self",
"summary": "SUSE Bug 1118212",
"url": "https://bugzilla.suse.com/1118212"
},
{
"category": "self",
"summary": "SUSE Bug 1153274",
"url": "https://bugzilla.suse.com/1153274"
},
{
"category": "self",
"summary": "SUSE Bug 1154353",
"url": "https://bugzilla.suse.com/1154353"
},
{
"category": "self",
"summary": "SUSE Bug 1156395",
"url": "https://bugzilla.suse.com/1156395"
},
{
"category": "self",
"summary": "SUSE Bug 1158266",
"url": "https://bugzilla.suse.com/1158266"
},
{
"category": "self",
"summary": "SUSE Bug 1167773",
"url": "https://bugzilla.suse.com/1167773"
},
{
"category": "self",
"summary": "SUSE Bug 1176447",
"url": "https://bugzilla.suse.com/1176447"
},
{
"category": "self",
"summary": "SUSE Bug 1177282",
"url": "https://bugzilla.suse.com/1177282"
},
{
"category": "self",
"summary": "SUSE Bug 1178134",
"url": "https://bugzilla.suse.com/1178134"
},
{
"category": "self",
"summary": "SUSE Bug 1180100",
"url": "https://bugzilla.suse.com/1180100"
},
{
"category": "self",
"summary": "SUSE Bug 1183405",
"url": "https://bugzilla.suse.com/1183405"
},
{
"category": "self",
"summary": "SUSE Bug 1188885",
"url": "https://bugzilla.suse.com/1188885"
},
{
"category": "self",
"summary": "SUSE Bug 1195826",
"url": "https://bugzilla.suse.com/1195826"
},
{
"category": "self",
"summary": "SUSE Bug 1196426",
"url": "https://bugzilla.suse.com/1196426"
},
{
"category": "self",
"summary": "SUSE Bug 1196478",
"url": "https://bugzilla.suse.com/1196478"
},
{
"category": "self",
"summary": "SUSE Bug 1196570",
"url": "https://bugzilla.suse.com/1196570"
},
{
"category": "self",
"summary": "SUSE Bug 1196840",
"url": "https://bugzilla.suse.com/1196840"
},
{
"category": "self",
"summary": "SUSE Bug 1197446",
"url": "https://bugzilla.suse.com/1197446"
},
{
"category": "self",
"summary": "SUSE Bug 1197472",
"url": "https://bugzilla.suse.com/1197472"
},
{
"category": "self",
"summary": "SUSE Bug 1197601",
"url": "https://bugzilla.suse.com/1197601"
},
{
"category": "self",
"summary": "SUSE Bug 1197675",
"url": "https://bugzilla.suse.com/1197675"
},
{
"category": "self",
"summary": "SUSE Bug 1198438",
"url": "https://bugzilla.suse.com/1198438"
},
{
"category": "self",
"summary": "SUSE Bug 1198577",
"url": "https://bugzilla.suse.com/1198577"
},
{
"category": "self",
"summary": "SUSE Bug 1198971",
"url": "https://bugzilla.suse.com/1198971"
},
{
"category": "self",
"summary": "SUSE Bug 1198989",
"url": "https://bugzilla.suse.com/1198989"
},
{
"category": "self",
"summary": "SUSE Bug 1199035",
"url": "https://bugzilla.suse.com/1199035"
},
{
"category": "self",
"summary": "SUSE Bug 1199052",
"url": "https://bugzilla.suse.com/1199052"
},
{
"category": "self",
"summary": "SUSE Bug 1199063",
"url": "https://bugzilla.suse.com/1199063"
},
{
"category": "self",
"summary": "SUSE Bug 1199114",
"url": "https://bugzilla.suse.com/1199114"
},
{
"category": "self",
"summary": "SUSE Bug 1199314",
"url": "https://bugzilla.suse.com/1199314"
},
{
"category": "self",
"summary": "SUSE Bug 1199365",
"url": "https://bugzilla.suse.com/1199365"
},
{
"category": "self",
"summary": "SUSE Bug 1199505",
"url": "https://bugzilla.suse.com/1199505"
},
{
"category": "self",
"summary": "SUSE Bug 1199507",
"url": "https://bugzilla.suse.com/1199507"
},
{
"category": "self",
"summary": "SUSE Bug 1199564",
"url": "https://bugzilla.suse.com/1199564"
},
{
"category": "self",
"summary": "SUSE Bug 1199626",
"url": "https://bugzilla.suse.com/1199626"
},
{
"category": "self",
"summary": "SUSE Bug 1199631",
"url": "https://bugzilla.suse.com/1199631"
},
{
"category": "self",
"summary": "SUSE Bug 1199650",
"url": "https://bugzilla.suse.com/1199650"
},
{
"category": "self",
"summary": "SUSE Bug 1199670",
"url": "https://bugzilla.suse.com/1199670"
},
{
"category": "self",
"summary": "SUSE Bug 1199839",
"url": "https://bugzilla.suse.com/1199839"
},
{
"category": "self",
"summary": "SUSE Bug 1200015",
"url": "https://bugzilla.suse.com/1200015"
},
{
"category": "self",
"summary": "SUSE Bug 1200019",
"url": "https://bugzilla.suse.com/1200019"
},
{
"category": "self",
"summary": "SUSE Bug 1200045",
"url": "https://bugzilla.suse.com/1200045"
},
{
"category": "self",
"summary": "SUSE Bug 1200046",
"url": "https://bugzilla.suse.com/1200046"
},
{
"category": "self",
"summary": "SUSE Bug 1200143",
"url": "https://bugzilla.suse.com/1200143"
},
{
"category": "self",
"summary": "SUSE Bug 1200144",
"url": "https://bugzilla.suse.com/1200144"
},
{
"category": "self",
"summary": "SUSE Bug 1200192",
"url": "https://bugzilla.suse.com/1200192"
},
{
"category": "self",
"summary": "SUSE Bug 1200206",
"url": "https://bugzilla.suse.com/1200206"
},
{
"category": "self",
"summary": "SUSE Bug 1200207",
"url": "https://bugzilla.suse.com/1200207"
},
{
"category": "self",
"summary": "SUSE Bug 1200216",
"url": "https://bugzilla.suse.com/1200216"
},
{
"category": "self",
"summary": "SUSE Bug 1200249",
"url": "https://bugzilla.suse.com/1200249"
},
{
"category": "self",
"summary": "SUSE Bug 1200259",
"url": "https://bugzilla.suse.com/1200259"
},
{
"category": "self",
"summary": "SUSE Bug 1200263",
"url": "https://bugzilla.suse.com/1200263"
},
{
"category": "self",
"summary": "SUSE Bug 1200529",
"url": "https://bugzilla.suse.com/1200529"
},
{
"category": "self",
"summary": "SUSE Bug 1200549",
"url": "https://bugzilla.suse.com/1200549"
},
{
"category": "self",
"summary": "SUSE Bug 1200604",
"url": "https://bugzilla.suse.com/1200604"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-19377 page",
"url": "https://www.suse.com/security/cve/CVE-2019-19377/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-26541 page",
"url": "https://www.suse.com/security/cve/CVE-2020-26541/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-33061 page",
"url": "https://www.suse.com/security/cve/CVE-2021-33061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0168 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1184 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1652 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1729 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1729/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1966 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1966/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1972 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1972/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1974 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1974/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1975 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1975/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-20008 page",
"url": "https://www.suse.com/security/cve/CVE-2022-20008/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-20141 page",
"url": "https://www.suse.com/security/cve/CVE-2022-20141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21123 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21125 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21127 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21166 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21180 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-30594 page",
"url": "https://www.suse.com/security/cve/CVE-2022-30594/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-32250 page",
"url": "https://www.suse.com/security/cve/CVE-2022-32250/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2022-06-24T11:32:22Z",
"generator": {
"date": "2022-06-24T11:32:22Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2022:2177-1",
"initial_release_date": "2022-06-24T11:32:22Z",
"revision_history": [
{
"date": "2022-06-24T11:32:22Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-5.3.18-150300.93.1.x86_64",
"product": {
"name": "kernel-rt-5.3.18-150300.93.1.x86_64",
"product_id": "kernel-rt-5.3.18-150300.93.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap Micro 5.2",
"product": {
"name": "openSUSE Leap Micro 5.2",
"product_id": "openSUSE Leap Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap-micro:5.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-5.3.18-150300.93.1.x86_64 as component of openSUSE Leap Micro 5.2",
"product_id": "openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
},
"product_reference": "kernel-rt-5.3.18-150300.93.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-19377",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-19377"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and unmounting can lead to a use-after-free in btrfs_queue_work in fs/btrfs/async-thread.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-19377",
"url": "https://www.suse.com/security/cve/CVE-2019-19377"
},
{
"category": "external",
"summary": "SUSE Bug 1158266 for CVE-2019-19377",
"url": "https://bugzilla.suse.com/1158266"
},
{
"category": "external",
"summary": "SUSE Bug 1162338 for CVE-2019-19377",
"url": "https://bugzilla.suse.com/1162338"
},
{
"category": "external",
"summary": "SUSE Bug 1162369 for CVE-2019-19377",
"url": "https://bugzilla.suse.com/1162369"
},
{
"category": "external",
"summary": "SUSE Bug 1173871 for CVE-2019-19377",
"url": "https://bugzilla.suse.com/1173871"
},
{
"category": "external",
"summary": "SUSE Bug 1211495 for CVE-2019-19377",
"url": "https://bugzilla.suse.com/1211495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "important"
}
],
"title": "CVE-2019-19377"
},
{
"cve": "CVE-2020-26541",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-26541"
}
],
"notes": [
{
"category": "general",
"text": "The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-26541",
"url": "https://www.suse.com/security/cve/CVE-2020-26541"
},
{
"category": "external",
"summary": "SUSE Bug 1177282 for CVE-2020-26541",
"url": "https://bugzilla.suse.com/1177282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2020-26541"
},
{
"cve": "CVE-2021-33061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-33061"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters may allow an authenticated user to potentially enable denial of service via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-33061",
"url": "https://www.suse.com/security/cve/CVE-2021-33061"
},
{
"category": "external",
"summary": "SUSE Bug 1196426 for CVE-2021-33061",
"url": "https://bugzilla.suse.com/1196426"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2021-33061"
},
{
"cve": "CVE-2022-0168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0168"
}
],
"notes": [
{
"category": "general",
"text": "A denial of service (DOS) issue was found in the Linux kernel\u0027s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0168",
"url": "https://www.suse.com/security/cve/CVE-2022-0168"
},
{
"category": "external",
"summary": "SUSE Bug 1197472 for CVE-2022-0168",
"url": "https://bugzilla.suse.com/1197472"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-0168"
},
{
"cve": "CVE-2022-1184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1184"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel\u0027s filesystem sub-component. This flaw allows a local attacker with a user privilege to cause a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1184",
"url": "https://www.suse.com/security/cve/CVE-2022-1184"
},
{
"category": "external",
"summary": "SUSE Bug 1198577 for CVE-2022-1184",
"url": "https://bugzilla.suse.com/1198577"
},
{
"category": "external",
"summary": "SUSE Bug 1210859 for CVE-2022-1184",
"url": "https://bugzilla.suse.com/1210859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-1184"
},
{
"cve": "CVE-2022-1652",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1652"
}
],
"notes": [
{
"category": "general",
"text": "Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function. By executing a specially-crafted program, an attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service condition on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1652",
"url": "https://www.suse.com/security/cve/CVE-2022-1652"
},
{
"category": "external",
"summary": "SUSE Bug 1199063 for CVE-2022-1652",
"url": "https://bugzilla.suse.com/1199063"
},
{
"category": "external",
"summary": "SUSE Bug 1200057 for CVE-2022-1652",
"url": "https://bugzilla.suse.com/1200057"
},
{
"category": "external",
"summary": "SUSE Bug 1200751 for CVE-2022-1652",
"url": "https://bugzilla.suse.com/1200751"
},
{
"category": "external",
"summary": "SUSE Bug 1201034 for CVE-2022-1652",
"url": "https://bugzilla.suse.com/1201034"
},
{
"category": "external",
"summary": "SUSE Bug 1201832 for CVE-2022-1652",
"url": "https://bugzilla.suse.com/1201832"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-1652",
"url": "https://bugzilla.suse.com/1204132"
},
{
"category": "external",
"summary": "SUSE Bug 1212307 for CVE-2022-1652",
"url": "https://bugzilla.suse.com/1212307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-1652"
},
{
"cve": "CVE-2022-1729",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1729"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1729",
"url": "https://www.suse.com/security/cve/CVE-2022-1729"
},
{
"category": "external",
"summary": "SUSE Bug 1199507 for CVE-2022-1729",
"url": "https://bugzilla.suse.com/1199507"
},
{
"category": "external",
"summary": "SUSE Bug 1199697 for CVE-2022-1729",
"url": "https://bugzilla.suse.com/1199697"
},
{
"category": "external",
"summary": "SUSE Bug 1201832 for CVE-2022-1729",
"url": "https://bugzilla.suse.com/1201832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "important"
}
],
"title": "CVE-2022-1729"
},
{
"cve": "CVE-2022-1966",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1966"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-32250. Reason: This candidate is a duplicate of CVE-2022-32250. Notes: All CVE users should reference CVE-2022-32250 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1966",
"url": "https://www.suse.com/security/cve/CVE-2022-1966"
},
{
"category": "external",
"summary": "SUSE Bug 1200015 for CVE-2022-1966",
"url": "https://bugzilla.suse.com/1200015"
},
{
"category": "external",
"summary": "SUSE Bug 1200268 for CVE-2022-1966",
"url": "https://bugzilla.suse.com/1200268"
},
{
"category": "external",
"summary": "SUSE Bug 1200494 for CVE-2022-1966",
"url": "https://bugzilla.suse.com/1200494"
},
{
"category": "external",
"summary": "SUSE Bug 1200529 for CVE-2022-1966",
"url": "https://bugzilla.suse.com/1200529"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "important"
}
],
"title": "CVE-2022-1966"
},
{
"cve": "CVE-2022-1972",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1972"
}
],
"notes": [
{
"category": "general",
"text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-2078. Reason: This candidate is a reservation duplicate of CVE-2022-2078. Notes: All CVE users should reference CVE-2022-2078 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1972",
"url": "https://www.suse.com/security/cve/CVE-2022-1972"
},
{
"category": "external",
"summary": "SUSE Bug 1200019 for CVE-2022-1972",
"url": "https://bugzilla.suse.com/1200019"
},
{
"category": "external",
"summary": "SUSE Bug 1200266 for CVE-2022-1972",
"url": "https://bugzilla.suse.com/1200266"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-1972"
},
{
"cve": "CVE-2022-1974",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1974"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free flaw was found in the Linux kernel\u0027s NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAP_NET_ADMIN privilege to leak kernel information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1974",
"url": "https://www.suse.com/security/cve/CVE-2022-1974"
},
{
"category": "external",
"summary": "SUSE Bug 1200144 for CVE-2022-1974",
"url": "https://bugzilla.suse.com/1200144"
},
{
"category": "external",
"summary": "SUSE Bug 1200265 for CVE-2022-1974",
"url": "https://bugzilla.suse.com/1200265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-1974"
},
{
"cve": "CVE-2022-1975",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1975"
}
],
"notes": [
{
"category": "general",
"text": "There is a sleep-in-atomic bug in /net/nfc/netlink.c that allows an attacker to crash the Linux kernel by simulating a nfc device from user-space.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1975",
"url": "https://www.suse.com/security/cve/CVE-2022-1975"
},
{
"category": "external",
"summary": "SUSE Bug 1200143 for CVE-2022-1975",
"url": "https://bugzilla.suse.com/1200143"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-1975"
},
{
"cve": "CVE-2022-20008",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-20008"
}
],
"notes": [
{
"category": "general",
"text": "In mmc_blk_read_single of block.c, there is a possible way to read kernel heap memory due to uninitialized data. This could lead to local information disclosure if reading from an SD card that triggers errors, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-216481035References: Upstream kernel",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-20008",
"url": "https://www.suse.com/security/cve/CVE-2022-20008"
},
{
"category": "external",
"summary": "SUSE Bug 1199564 for CVE-2022-20008",
"url": "https://bugzilla.suse.com/1199564"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-20008"
},
{
"cve": "CVE-2022-20141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-20141"
}
],
"notes": [
{
"category": "general",
"text": "In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-112551163References: Upstream kernel",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-20141",
"url": "https://www.suse.com/security/cve/CVE-2022-20141"
},
{
"category": "external",
"summary": "SUSE Bug 1200604 for CVE-2022-20141",
"url": "https://bugzilla.suse.com/1200604"
},
{
"category": "external",
"summary": "SUSE Bug 1200605 for CVE-2022-20141",
"url": "https://bugzilla.suse.com/1200605"
},
{
"category": "external",
"summary": "SUSE Bug 1203034 for CVE-2022-20141",
"url": "https://bugzilla.suse.com/1203034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-20141"
},
{
"cve": "CVE-2022-21123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21123"
}
],
"notes": [
{
"category": "general",
"text": "Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21123",
"url": "https://www.suse.com/security/cve/CVE-2022-21123"
},
{
"category": "external",
"summary": "SUSE Bug 1199650 for CVE-2022-21123",
"url": "https://bugzilla.suse.com/1199650"
},
{
"category": "external",
"summary": "SUSE Bug 1200549 for CVE-2022-21123",
"url": "https://bugzilla.suse.com/1200549"
},
{
"category": "external",
"summary": "SUSE Bug 1209075 for CVE-2022-21123",
"url": "https://bugzilla.suse.com/1209075"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-21123"
},
{
"cve": "CVE-2022-21125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21125"
}
],
"notes": [
{
"category": "general",
"text": "Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21125",
"url": "https://www.suse.com/security/cve/CVE-2022-21125"
},
{
"category": "external",
"summary": "SUSE Bug 1199650 for CVE-2022-21125",
"url": "https://bugzilla.suse.com/1199650"
},
{
"category": "external",
"summary": "SUSE Bug 1200549 for CVE-2022-21125",
"url": "https://bugzilla.suse.com/1200549"
},
{
"category": "external",
"summary": "SUSE Bug 1209074 for CVE-2022-21125",
"url": "https://bugzilla.suse.com/1209074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-21125"
},
{
"cve": "CVE-2022-21127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21127"
}
],
"notes": [
{
"category": "general",
"text": "Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21127",
"url": "https://www.suse.com/security/cve/CVE-2022-21127"
},
{
"category": "external",
"summary": "SUSE Bug 1199650 for CVE-2022-21127",
"url": "https://bugzilla.suse.com/1199650"
},
{
"category": "external",
"summary": "SUSE Bug 1200549 for CVE-2022-21127",
"url": "https://bugzilla.suse.com/1200549"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-21127"
},
{
"cve": "CVE-2022-21166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21166"
}
],
"notes": [
{
"category": "general",
"text": "Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21166",
"url": "https://www.suse.com/security/cve/CVE-2022-21166"
},
{
"category": "external",
"summary": "SUSE Bug 1199650 for CVE-2022-21166",
"url": "https://bugzilla.suse.com/1199650"
},
{
"category": "external",
"summary": "SUSE Bug 1200549 for CVE-2022-21166",
"url": "https://bugzilla.suse.com/1200549"
},
{
"category": "external",
"summary": "SUSE Bug 1209073 for CVE-2022-21166",
"url": "https://bugzilla.suse.com/1209073"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-21166"
},
{
"cve": "CVE-2022-21180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21180"
}
],
"notes": [
{
"category": "general",
"text": "Improper input validation for some Intel(R) Processors may allow an authenticated user to potentially cause a denial of service via local access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21180",
"url": "https://www.suse.com/security/cve/CVE-2022-21180"
},
{
"category": "external",
"summary": "SUSE Bug 1199650 for CVE-2022-21180",
"url": "https://bugzilla.suse.com/1199650"
},
{
"category": "external",
"summary": "SUSE Bug 1200549 for CVE-2022-21180",
"url": "https://bugzilla.suse.com/1200549"
},
{
"category": "external",
"summary": "SUSE Bug 1212313 for CVE-2022-21180",
"url": "https://bugzilla.suse.com/1212313"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "moderate"
}
],
"title": "CVE-2022-21180"
},
{
"cve": "CVE-2022-30594",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-30594"
}
],
"notes": [
{
"category": "general",
"text": "The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-30594",
"url": "https://www.suse.com/security/cve/CVE-2022-30594"
},
{
"category": "external",
"summary": "SUSE Bug 1199505 for CVE-2022-30594",
"url": "https://bugzilla.suse.com/1199505"
},
{
"category": "external",
"summary": "SUSE Bug 1199602 for CVE-2022-30594",
"url": "https://bugzilla.suse.com/1199602"
},
{
"category": "external",
"summary": "SUSE Bug 1201549 for CVE-2022-30594",
"url": "https://bugzilla.suse.com/1201549"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-30594",
"url": "https://bugzilla.suse.com/1204132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "important"
}
],
"title": "CVE-2022-30594"
},
{
"cve": "CVE-2022-32250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-32250"
}
],
"notes": [
{
"category": "general",
"text": "net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-32250",
"url": "https://www.suse.com/security/cve/CVE-2022-32250"
},
{
"category": "external",
"summary": "SUSE Bug 1200015 for CVE-2022-32250",
"url": "https://bugzilla.suse.com/1200015"
},
{
"category": "external",
"summary": "SUSE Bug 1200268 for CVE-2022-32250",
"url": "https://bugzilla.suse.com/1200268"
},
{
"category": "external",
"summary": "SUSE Bug 1200494 for CVE-2022-32250",
"url": "https://bugzilla.suse.com/1200494"
},
{
"category": "external",
"summary": "SUSE Bug 1202992 for CVE-2022-32250",
"url": "https://bugzilla.suse.com/1202992"
},
{
"category": "external",
"summary": "SUSE Bug 1202993 for CVE-2022-32250",
"url": "https://bugzilla.suse.com/1202993"
},
{
"category": "external",
"summary": "SUSE Bug 1203002 for CVE-2022-32250",
"url": "https://bugzilla.suse.com/1203002"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap Micro 5.2:kernel-rt-5.3.18-150300.93.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-06-24T11:32:22Z",
"details": "important"
}
],
"title": "CVE-2022-32250"
}
]
}
RHSA-2022:7444
Vulnerability from csaf_redhat - Published: 2022-11-08 09:25 - Updated: 2026-03-30 10:28Summary
Red Hat Security Advisory: kernel-rt security and bug fix update
Severity
Moderate
Notes
Topic: An update for kernel-rt is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.
Security Fix(es):
* off-path attacker may inject data or terminate victim's TCP session (CVE-2020-36516)
* Race condition in VT_RESIZEX ioctl when vc_cons[i].d is already NULL leading to NULL pointer dereference (CVE-2020-36558)
* use-after-free vulnerability in function sco_sock_sendmsg() (CVE-2021-3640)
* Memory leak for large arguments in video_usercopy function in drivers/media/v4l2-core/v4l2-ioctl.c (CVE-2021-30002)
* smb2_ioctl_query_info NULL Pointer Dereference (CVE-2022-0168)
* NULL pointer dereference in udf_expand_file_adinicbdue() during writeback (CVE-2022-0617)
* swiotlb information leak with DMA_FROM_DEVICE (CVE-2022-0854)
* Uninitialized registers on stack in nft_do_chain can cause kernel pointer leakage to UM (CVE-2022-1016)
* Race condition in snd_pcm_hw_free leading to use-after-free (CVE-2022-1048)
* use-after-free in tc_new_tfilter() in net/sched/cls_api.c (CVE-2022-1055)
* use-after-free and memory errors in ext4 when mounting and operating on a corrupted image (CVE-2022-1184)
* NULL pointer dereference in x86_emulate_insn may lead to DoS (CVE-2022-1852)
* buffer overflow in nft_set_desc_concat_parse() (CVE-2022-2078)
* nf_tables cross-table potential use-after-free may lead to local privilege escalation (CVE-2022-2586)
* openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size() (CVE-2022-2639)
* use-after-free when psi trigger is destroyed while being polled (CVE-2022-2938)
* net/packet: slab-out-of-bounds access in packet_recvmsg() (CVE-2022-20368)
* possible to use the debugger to write zero into a location of choice (CVE-2022-21499)
* Post-barrier Return Stack Buffer Predictions (CVE-2022-26373)
* Memory leak in drivers/hid/hid-elo.c (CVE-2022-27950)
* Double free in ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c (CVE-2022-28390)
* Use after free in SUNRPC subsystem (CVE-2022-28893)
* use-after-free due to improper update of reference count in net/sched/cls_u32.c (CVE-2022-29581)
* DoS in nfqnl_mangle in net/netfilter/nfnetlink_queue.c (CVE-2022-36946)
* nfs_atomic_open() returns uninitialized data instead of ENOTDIR (CVE-2022-24448)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.7 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A TCP/IP packet spoofing attack flaw was found in the Linux kernel’s TCP/IP protocol, where a Man-in-the-Middle Attack (MITM) performs an IP fragmentation attack and an IPID collision. This flaw allows a remote user to pretend to be the sender of the TCP/IP packet for an existing TCP/IP session.
5.9 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A NULL pointer dereference flaw was found in the Linux kernel’s Virtual Terminal subsystem was found in how a user calls the VT_RESIZEX ioctl. This flaw allows a local user to crash the system.
5.1 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw memory leak in the Linux kernel webcam device functionality was found in the way user calls ioctl that triggers video_usercopy function. The highest threat from this vulnerability is to system availability.
6.2 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
In the Linux kernel, the following vulnerability has been resolved: veth: ensure skb entering GRO are not cloned. After commit d3256efd8e8b ("veth: allow enabling NAPI even without XDP"), if GRO is enabled on a veth device and TSO is disabled on the peer device, TCP skbs will go through the NAPI callback. If there is no XDP program attached, the veth code does not perform any share check, and shared/cloned skbs could enter the GRO engine. Ignat reported a BUG triggered later-on due to the above condition: [ 53.970529][ C1] kernel BUG at net/core/skbuff.c:3574! [ 53.981755][ C1] invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI [ 53.982634][ C1] CPU: 1 PID: 19 Comm: ksoftirqd/1 Not tainted 5.16.0-rc5+ #25 [ 53.982634][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015 [ 53.982634][ C1] RIP: 0010:skb_shift+0x13ef/0x23b0 [ 53.982634][ C1] Code: ea 03 0f b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 41 0c 00 00 41 80 7f 02 00 4d 8d b5 d0 00 00 00 0f 85 74 f5 ff ff <0f> 0b 4d 8d 77 20 be 04 00 00 00 4c 89 44 24 78 4c 89 f7 4c 89 8c [ 53.982634][ C1] RSP: 0018:ffff8881008f7008 EFLAGS: 00010246 [ 53.982634][ C1] RAX: 0000000000000000 RBX: ffff8881180b4c80 RCX: 0000000000000000 [ 53.982634][ C1] RDX: 0000000000000002 RSI: ffff8881180b4d3c RDI: ffff88810bc9cac2 [ 53.982634][ C1] RBP: ffff8881008f70b8 R08: ffff8881180b4cf4 R09: ffff8881180b4cf0 [ 53.982634][ C1] R10: ffffed1022999e5c R11: 0000000000000002 R12: 0000000000000590 [ 53.982634][ C1] R13: ffff88810f940c80 R14: ffff88810f940d50 R15: ffff88810bc9cac0 [ 53.982634][ C1] FS: 0000000000000000(0000) GS:ffff888235880000(0000) knlGS:0000000000000000 [ 53.982634][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.982634][ C1] CR2: 00007ff5f9b86680 CR3: 0000000108ce8004 CR4: 0000000000170ee0 [ 53.982634][ C1] Call Trace: [ 53.982634][ C1] <TASK> [ 53.982634][ C1] tcp_sacktag_walk+0xaba/0x18e0 [ 53.982634][ C1] tcp_sacktag_write_queue+0xe7b/0x3460 [ 53.982634][ C1] tcp_ack+0x2666/0x54b0 [ 53.982634][ C1] tcp_rcv_established+0x4d9/0x20f0 [ 53.982634][ C1] tcp_v4_do_rcv+0x551/0x810 [ 53.982634][ C1] tcp_v4_rcv+0x22ed/0x2ed0 [ 53.982634][ C1] ip_protocol_deliver_rcu+0x96/0xaf0 [ 53.982634][ C1] ip_local_deliver_finish+0x1e0/0x2f0 [ 53.982634][ C1] ip_sublist_rcv_finish+0x211/0x440 [ 53.982634][ C1] ip_list_rcv_finish.constprop.0+0x424/0x660 [ 53.982634][ C1] ip_list_rcv+0x2c8/0x410 [ 53.982634][ C1] __netif_receive_skb_list_core+0x65c/0x910 [ 53.982634][ C1] netif_receive_skb_list_internal+0x5f9/0xcb0 [ 53.982634][ C1] napi_complete_done+0x188/0x6e0 [ 53.982634][ C1] gro_cell_poll+0x10c/0x1d0 [ 53.982634][ C1] __napi_poll+0xa1/0x530 [ 53.982634][ C1] net_rx_action+0x567/0x1270 [ 53.982634][ C1] __do_softirq+0x28a/0x9ba [ 53.982634][ C1] run_ksoftirqd+0x32/0x60 [ 53.982634][ C1] smpboot_thread_fn+0x559/0x8c0 [ 53.982634][ C1] kthread+0x3b9/0x490 [ 53.982634][ C1] ret_from_fork+0x22/0x30 [ 53.982634][ C1] </TASK> Address the issue by skipping the GRO stage for shared or cloned skbs. To reduce the chance of OoO, try to unclone the skbs before giving up. v1 -> v2: - use avoid skb_copy and fallback to netif_receive_skb - Eric
6.0 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
A vulnerability was found in the Linux kernel's SCSI driver, in sg_copy_buffer() function, where an incorrect type in the min_t() macro can lead to a stack out-of-bounds condition. This occurs due to sign extension of larger values, which may result in memory corruption or DoS.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.
4.4 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A NULL pointer dereference was found in the Linux kernel’s UDF file system functionality in the way the user triggers the udf_file_write_iter function for a malicious UDF image. This flaw allows a local user to crash the system.
4.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A memory leak flaw was found in the Linux kernel’s DMA subsystem, in the way a user calls DMA_FROM_DEVICE. This flaw allows a local user to read random memory from the kernel space.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalate their privileges on the system.
7.0 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free vulnerability was found in the tc_new_tfilter function in net/sched/cls_api.c in the Linux kernel. The availability of local, unprivileged user namespaces allows privilege escalation.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and potentially corrupt the kernel, resulting in a denial of service condition.
7.0 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel’s filesystem sub-component. This flaw allows a local attacker with a user privilege to cause a denial of service.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A NULL pointer dereference issue was found in KVM when releasing a vCPU with dirty ring support enabled. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls, causing a kernel oops condition that results in a denial of service.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of service and possibly to run code.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel’s KVM when attempting to set a SynIC IRQ. This issue makes it possible for a misbehaving VMM to write to SYNIC/STIMER MSRs, causing a NULL pointer dereference. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls, causing a kernel oops condition that results in a denial of service.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel. Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module and firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equivalent dm-linear target and bypass verification until reboot. This allows root to bypass LoadPin and can be used to load untrusted and unverified kernel modules and firmware, which implies arbitrary kernel execution and persistence for peripherals that do not verify firmware updates.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free flaw was found in nf_tables cross-table in the net/netfilter/nf_tables_api.c function in the Linux kernel. This flaw allows a local, privileged attacker to cause a use-after-free problem at the time of table deletion, possibly leading to local privilege escalation.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Moderate
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reserve_sfa_size() function does not return -EMSGSIZE as expected, potentially leading to an out-of-bounds write access. This flaw allows a local user to crash or potentially escalate their privileges on the system.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in the Linux kernel’s implementation of Pressure Stall Information. While the feature is disabled by default, it could allow an attacker to crash the system or have other memory-corruption side effects.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
An issue was discovered in the Linux kernel through 5.16-rc6. netvsc_get_ethtool_stats in drivers/net/hyperv/netvsc_drv.c lacks check of the return value of kvmalloc_array() and will cause the null pointer dereference.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
An out-of-bounds access issue was found in the Linux kernel networking subsystem in the way raw packet sockets (AF_PACKET) used PACKET_COPY_THRESH and mmap operations. A local attacker with CAP_NET_RAW capability could use this flaw to trigger a buffer overflow resulting in a system crash or privilege escalation.
7.0 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel, where it is possible to modify read-only files due to a missing permission check. This flaw can lead to local privilege escalation.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in the kernel/debug/debug_core.c in the Linux kernel in lockdown mode. This flaw allows an attacker with local access to trigger the debugger, bypass lockdown and write anonymously.
6.7 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in the Linux kernel. When an application tries to open a directory (using the O_DIRECTORY flag) in a mounted NFS filesystem, a lookup operation is performed. If the NFS server returns a file as a result of the lookup, the NFS filesystem returns an uninitialized file descriptor instead of the expected ENOTDIR value. This flaw leads to the kernel's data leak into the userspace.
CWE-908 - Use of Uninitialized ResourceAffected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
A flaw was found in hw. In certain processors with Intel's Enhanced Indirect Branch Restricted Speculation (eIBRS) capabilities, soon after VM exit or IBPB command event, the linear address following the most recent near CALL instruction prior to a VM exit may be used as the Return Stack Buffer (RSB) prediction.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A memory leak flaw was found in elo_probe in drivers/hid/hid-elo.c in the Human Interface Devices (HID) in the Linux kernel. This issue allows an attacker to cause a denial of service when hid_parse() in elo_probe() fails.
5.1 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A double-free flaw was found in the Linux kernel in the ems_usb_start_xmit function. This flaw allows an attacker to create a memory leak and corrupt the underlying data structure by calling free more than once.
7.0 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A use-after-free flaw was found in the Linux kernel’s net/sunrpc/xprt.c function in the Remote Procedure Call (SunRPC) protocol. This flaw allows a local attacker to crash the system, leading to a kernel information leak issue.
6.6 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A use-after-free flaw was found in u32_change in net/sched/cls_u32.c in the network subcomponent of the Linux kernel. This flaw allows a local attacker to crash the system, cause a privilege escalation, and leak kernel information.
7.8 (High)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A memory corruption flaw was found in the Linux kernel’s Netfilter subsystem in the way a local user uses the libnetfilter_queue when analyzing a corrupted network packet. This flaw allows a local user to crash the system or a remote user to crash the system when the libnetfilter_queue is used by a local user.
6.2 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A denial of service vulnerability was found in the Linux kernel. When debugfs is set as off in the kernel command line, iwiwifi's mvm module uses an invalid/unchecked debugfs_dir pointer, resulting in disruption to availability.
5.5 (Medium)
Affected products
Fixed
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
208 references
| URL | Category |
|---|---|
| https://access.redhat.com/errata/RHSA-2022:7444 | self |
| https://access.redhat.com/security/updates/classi… | external |
| https://access.redhat.com/documentation/en-us/red… | external |
| https://access.redhat.com/solutions/6971358 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1946279 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=1980646 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2037386 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2037769 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2051444 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2053632 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2058395 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2059928 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2066614 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2066706 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2069408 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2070205 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2070220 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2073064 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2074208 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2084183 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2084479 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2088021 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2089815 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2096178 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2112693 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2114878 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2115065 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2115278 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2120175 | external |
| https://bugzilla.redhat.com/show_bug.cgi?id=2123695 | external |
| https://security.access.redhat.com/data/csaf/v2/a… | self |
| https://access.redhat.com/security/cve/CVE-2020-36516 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2059928 | external |
| https://www.cve.org/CVERecord?id=CVE-2020-36516 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2020-36516 | external |
| https://www.spinics.net/lists/netdev/msg795642.html | external |
| https://access.redhat.com/security/cve/CVE-2020-36558 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2112693 | external |
| https://www.cve.org/CVERecord?id=CVE-2020-36558 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2020-36558 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2021-3640 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1980646 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-3640 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-3640 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://lkml.org/lkml/2021/8/28/238 | external |
| https://www.openwall.com/lists/oss-security/2021/… | external |
| https://access.redhat.com/security/cve/CVE-2021-30002 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=1946279 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-30002 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-30002 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2021-47099 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2267919 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-47099 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-47099 | external |
| https://lore.kernel.org/linux-cve-announce/202403… | external |
| https://access.redhat.com/security/cve/CVE-2021-47580 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2293249 | external |
| https://www.cve.org/CVERecord?id=CVE-2021-47580 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2021-47580 | external |
| https://lore.kernel.org/linux-cve-announce/202406… | external |
| https://access.redhat.com/security/cve/CVE-2022-0168 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2037386 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-0168 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-0168 | external |
| https://starlabs.sg/advisories/22/22-0168/ | external |
| https://access.redhat.com/security/cve/CVE-2022-0617 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2053632 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-0617 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-0617 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://lore.kernel.org/lkml/20220114172329.ygzry… | external |
| https://access.redhat.com/security/cve/CVE-2022-0854 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2058395 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-0854 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-0854 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2022-1016 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2066614 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-1016 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-1016 | external |
| http://blog.dbouman.nl/2022/04/02/How-The-Tables-… | external |
| https://seclists.org/oss-sec/2022/q1/205 | external |
| https://access.redhat.com/security/cve/CVE-2022-1048 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2066706 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-1048 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-1048 | external |
| https://lore.kernel.org/lkml/20220322170720.3529-… | external |
| https://access.redhat.com/security/cve/CVE-2022-1055 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2070220 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-1055 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-1055 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://syzkaller.appspot.com/bug?id=2212474c9589… | external |
| https://access.redhat.com/security/cve/CVE-2022-1158 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2069793 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-1158 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-1158 | external |
| https://www.openwall.com/lists/oss-security/2022/… | external |
| https://access.redhat.com/security/cve/CVE-2022-1184 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2070205 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-1184 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-1184 | external |
| https://access.redhat.com/security/cve/CVE-2022-1263 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2072698 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-1263 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-1263 | external |
| https://www.openwall.com/lists/oss-security/2022/… | external |
| https://access.redhat.com/security/cve/CVE-2022-1852 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2089815 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-1852 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-1852 | external |
| https://github.com/torvalds/linux/commit/fee060cd… | external |
| https://access.redhat.com/security/cve/CVE-2022-2078 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2096178 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-2078 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-2078 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2022-2153 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2069736 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-2153 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-2153 | external |
| https://www.openwall.com/lists/oss-security/2022/… | external |
| https://access.redhat.com/security/cve/CVE-2022-2503 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2177862 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-2503 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-2503 | external |
| https://github.com/google/security-research/secur… | external |
| https://access.redhat.com/security/cve/CVE-2022-2586 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2114878 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-2586 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-2586 | external |
| https://lore.kernel.org/netfilter-devel/202208091… | external |
| https://www.openwall.com/lists/oss-security/2022/… | external |
| https://www.cisa.gov/known-exploited-vulnerabilit… | external |
| https://access.redhat.com/security/cve/CVE-2022-2639 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2084479 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-2639 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-2639 | external |
| https://access.redhat.com/security/cve/CVE-2022-2938 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2120175 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-2938 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-2938 | external |
| https://access.redhat.com/security/cve/CVE-2022-3107 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2153060 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-3107 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-3107 | external |
| https://access.redhat.com/security/cve/CVE-2022-20368 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2123695 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-20368 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-20368 | external |
| https://access.redhat.com/security/cve/CVE-2022-20572 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2186545 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-20572 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-20572 | external |
| https://access.redhat.com/security/cve/CVE-2022-21499 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2084183 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-21499 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-21499 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2022-24448 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2051444 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-24448 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-24448 | external |
| https://git.kernel.org/cgit/linux/kernel/git/torv… | external |
| https://access.redhat.com/security/cve/CVE-2022-26373 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2115065 | external |
| https://access.redhat.com/solutions/6971358 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-26373 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-26373 | external |
| https://www.intel.com/content/www/us/en/developer… | external |
| https://access.redhat.com/security/cve/CVE-2022-27950 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2069408 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-27950 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-27950 | external |
| https://git.kernel.org/cgit/linux/kernel/git/torv… | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://www.openwall.com/lists/oss-security/2022/… | external |
| https://access.redhat.com/security/cve/CVE-2022-28390 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2073064 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-28390 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-28390 | external |
| https://access.redhat.com/security/cve/CVE-2022-28893 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2074208 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-28893 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-28893 | external |
| http://www.openwall.com/lists/oss-security/2022/04/11/3 | external |
| http://www.openwall.com/lists/oss-security/2022/04/11/4 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://access.redhat.com/security/cve/CVE-2022-29581 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2088021 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-29581 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-29581 | external |
| https://git.kernel.org/pub/scm/linux/kernel/git/t… | external |
| https://kernel.dance/#3db09e762dc79584a69c10d74a6… | external |
| https://access.redhat.com/security/cve/CVE-2022-36946 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2115278 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-36946 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-36946 | external |
| https://lore.kernel.org/all/20220726104206.2036-1… | external |
| https://access.redhat.com/security/cve/CVE-2022-48918 | self |
| https://bugzilla.redhat.com/show_bug.cgi?id=2307171 | external |
| https://www.cve.org/CVERecord?id=CVE-2022-48918 | external |
| https://nvd.nist.gov/vuln/detail/CVE-2022-48918 | external |
| https://lore.kernel.org/linux-cve-announce/202408… | external |
Acknowledgments
STAR Labs
Billy Jheng Bing Jhong
Halil Pasic
David Bouman
Takashi Iwai
Harbin Institute of Technology
Qiuhao Li
Zhejiang University
Gaoning Pan
Yongkang Jia
Wenqing Liu
Zhejiang University
Yongkang Jia
Gaoning Pan
(Harbin Institute of Technology)
Qiuhao Li
(Zhejiang University)
Gaoning Pan
Yongkang Jia
Sea Security
Team Orca
Jiasheng Jiang
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for kernel-rt is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.\n\nSecurity Fix(es):\n\n* off-path attacker may inject data or terminate victim\u0027s TCP session (CVE-2020-36516)\n\n* Race condition in VT_RESIZEX ioctl when vc_cons[i].d is already NULL leading to NULL pointer dereference (CVE-2020-36558)\n\n* use-after-free vulnerability in function sco_sock_sendmsg() (CVE-2021-3640)\n\n* Memory leak for large arguments in video_usercopy function in drivers/media/v4l2-core/v4l2-ioctl.c (CVE-2021-30002)\n\n* smb2_ioctl_query_info NULL Pointer Dereference (CVE-2022-0168)\n\n* NULL pointer dereference in udf_expand_file_adinicbdue() during writeback (CVE-2022-0617)\n\n* swiotlb information leak with DMA_FROM_DEVICE (CVE-2022-0854)\n\n* Uninitialized registers on stack in nft_do_chain can cause kernel pointer leakage to UM (CVE-2022-1016)\n\n* Race condition in snd_pcm_hw_free leading to use-after-free (CVE-2022-1048)\n\n* use-after-free in tc_new_tfilter() in net/sched/cls_api.c (CVE-2022-1055)\n\n* use-after-free and memory errors in ext4 when mounting and operating on a corrupted image (CVE-2022-1184)\n\n* NULL pointer dereference in x86_emulate_insn may lead to DoS (CVE-2022-1852)\n\n* buffer overflow in nft_set_desc_concat_parse() (CVE-2022-2078)\n\n* nf_tables cross-table potential use-after-free may lead to local privilege escalation (CVE-2022-2586)\n\n* openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size() (CVE-2022-2639)\n\n* use-after-free when psi trigger is destroyed while being polled (CVE-2022-2938)\n\n* net/packet: slab-out-of-bounds access in packet_recvmsg() (CVE-2022-20368)\n\n* possible to use the debugger to write zero into a location of choice (CVE-2022-21499)\n\n* Post-barrier Return Stack Buffer Predictions (CVE-2022-26373)\n\n* Memory leak in drivers/hid/hid-elo.c (CVE-2022-27950)\n\n* Double free in ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c (CVE-2022-28390)\n\n* Use after free in SUNRPC subsystem (CVE-2022-28893)\n\n* use-after-free due to improper update of reference count in net/sched/cls_u32.c (CVE-2022-29581)\n\n* DoS in nfqnl_mangle in net/netfilter/nfnetlink_queue.c (CVE-2022-36946)\n\n* nfs_atomic_open() returns uninitialized data instead of ENOTDIR (CVE-2022-24448)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.7 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:7444",
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/solutions/6971358",
"url": "https://access.redhat.com/solutions/6971358"
},
{
"category": "external",
"summary": "1946279",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1946279"
},
{
"category": "external",
"summary": "1980646",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1980646"
},
{
"category": "external",
"summary": "2037386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386"
},
{
"category": "external",
"summary": "2037769",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037769"
},
{
"category": "external",
"summary": "2051444",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2051444"
},
{
"category": "external",
"summary": "2053632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053632"
},
{
"category": "external",
"summary": "2058395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2058395"
},
{
"category": "external",
"summary": "2059928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2059928"
},
{
"category": "external",
"summary": "2066614",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066614"
},
{
"category": "external",
"summary": "2066706",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066706"
},
{
"category": "external",
"summary": "2069408",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069408"
},
{
"category": "external",
"summary": "2070205",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2070205"
},
{
"category": "external",
"summary": "2070220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2070220"
},
{
"category": "external",
"summary": "2073064",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2073064"
},
{
"category": "external",
"summary": "2074208",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074208"
},
{
"category": "external",
"summary": "2084183",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084183"
},
{
"category": "external",
"summary": "2084479",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084479"
},
{
"category": "external",
"summary": "2088021",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2088021"
},
{
"category": "external",
"summary": "2089815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2089815"
},
{
"category": "external",
"summary": "2096178",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2096178"
},
{
"category": "external",
"summary": "2112693",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112693"
},
{
"category": "external",
"summary": "2114878",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2114878"
},
{
"category": "external",
"summary": "2115065",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2115065"
},
{
"category": "external",
"summary": "2115278",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2115278"
},
{
"category": "external",
"summary": "2120175",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2120175"
},
{
"category": "external",
"summary": "2123695",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2123695"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7444.json"
}
],
"title": "Red Hat Security Advisory: kernel-rt security and bug fix update",
"tracking": {
"current_release_date": "2026-03-30T10:28:49+00:00",
"generator": {
"date": "2026-03-30T10:28:49+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.4"
}
},
"id": "RHSA-2022:7444",
"initial_release_date": "2022-11-08T09:25:15+00:00",
"revision_history": [
{
"date": "2022-11-08T09:25:15+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-11-08T09:25:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-03-30T10:28:49+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::nfv"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Real Time (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::realtime"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"product": {
"name": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"product_id": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@4.18.0-425.3.1.rt7.213.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-core@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-core@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-extra@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product": {
"name": "kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_id": "kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm@4.18.0-425.3.1.rt7.213.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src"
},
"product_reference": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time for NFV (v. 8)",
"product_id": "NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "NFV-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src"
},
"product_reference": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64 as a component of Red Hat Enterprise Linux Real Time (v. 8)",
"product_id": "RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"relates_to_product_reference": "RT-8.7.0.GA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-36516",
"cwe": {
"id": "CWE-290",
"name": "Authentication Bypass by Spoofing"
},
"discovery_date": "2022-03-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2059928"
}
],
"notes": [
{
"category": "description",
"text": "A TCP/IP packet spoofing attack flaw was found in the Linux kernel\u2019s TCP/IP protocol, where a Man-in-the-Middle Attack (MITM) performs an IP fragmentation attack and an IPID collision. This flaw allows a remote user to pretend to be the sender of the TCP/IP packet for an existing TCP/IP session.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: off-path attacker may inject data or terminate victim\u0027s TCP session",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-36516"
},
{
"category": "external",
"summary": "RHBZ#2059928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2059928"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-36516",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36516"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-36516",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-36516"
},
{
"category": "external",
"summary": "https://www.spinics.net/lists/netdev/msg795642.html",
"url": "https://www.spinics.net/lists/netdev/msg795642.html"
}
],
"release_date": "2022-02-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: off-path attacker may inject data or terminate victim\u0027s TCP session"
},
{
"cve": "CVE-2020-36558",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-07-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2112693"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the Linux kernel\u2019s Virtual Terminal subsystem was found in how a user calls the VT_RESIZEX ioctl. This flaw allows a local user to crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: race condition in VT_RESIZEX ioctl when vc_cons[i].d is already NULL leading to NULL pointer dereference",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-36558"
},
{
"category": "external",
"summary": "RHBZ#2112693",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2112693"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-36558",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36558"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-36558",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-36558"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6cd1ed50efd88261298577cd92a14f2768eddeeb",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=6cd1ed50efd88261298577cd92a14f2768eddeeb"
}
],
"release_date": "2020-02-10T10:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: race condition in VT_RESIZEX ioctl when vc_cons[i].d is already NULL leading to NULL pointer dereference"
},
{
"cve": "CVE-2021-3640",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2021-07-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1980646"
}
],
"notes": [
{
"category": "description",
"text": "A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free vulnerability in function sco_sock_sendmsg()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is rated as having a Moderate impact because of the privileges (CAP_NET_ADMIN in initial namespace) required for exploiting the issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3640"
},
{
"category": "external",
"summary": "RHBZ#1980646",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1980646"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3640",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3640"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3640",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3640"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/bluetooth/sco.c?h=v5.16\u0026id=99c23da0eed4fd20cae8243f2b51e10e66aa0951",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/bluetooth/sco.c?h=v5.16\u0026id=99c23da0eed4fd20cae8243f2b51e10e66aa0951"
},
{
"category": "external",
"summary": "https://lkml.org/lkml/2021/8/28/238",
"url": "https://lkml.org/lkml/2021/8/28/238"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2021/07/22/1",
"url": "https://www.openwall.com/lists/oss-security/2021/07/22/1"
}
],
"release_date": "2021-07-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use-after-free vulnerability in function sco_sock_sendmsg()"
},
{
"cve": "CVE-2021-30002",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2021-04-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1946279"
}
],
"notes": [
{
"category": "description",
"text": "A flaw memory leak in the Linux kernel webcam device functionality was found in the way user calls ioctl that triggers video_usercopy function. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: memory leak for large arguments in video_usercopy function in drivers/media/v4l2-core/v4l2-ioctl.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-30002"
},
{
"category": "external",
"summary": "RHBZ#1946279",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1946279"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-30002",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-30002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-30002"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fb18802a338b36f675a388fc03d2aa504a0d0899",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fb18802a338b36f675a388fc03d2aa504a0d0899"
}
],
"release_date": "2021-04-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module v4l2-common from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: memory leak for large arguments in video_usercopy function in drivers/media/v4l2-core/v4l2-ioctl.c"
},
{
"cve": "CVE-2021-47099",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-03-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2267919"
}
],
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nveth: ensure skb entering GRO are not cloned.\n\nAfter commit d3256efd8e8b (\"veth: allow enabling NAPI even without XDP\"),\nif GRO is enabled on a veth device and TSO is disabled on the peer\ndevice, TCP skbs will go through the NAPI callback. If there is no XDP\nprogram attached, the veth code does not perform any share check, and\nshared/cloned skbs could enter the GRO engine.\n\nIgnat reported a BUG triggered later-on due to the above condition:\n\n[ 53.970529][ C1] kernel BUG at net/core/skbuff.c:3574!\n[ 53.981755][ C1] invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI\n[ 53.982634][ C1] CPU: 1 PID: 19 Comm: ksoftirqd/1 Not tainted 5.16.0-rc5+ #25\n[ 53.982634][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n[ 53.982634][ C1] RIP: 0010:skb_shift+0x13ef/0x23b0\n[ 53.982634][ C1] Code: ea 03 0f b6 04 02 48 89 fa 83 e2 07 38 d0\n7f 08 84 c0 0f 85 41 0c 00 00 41 80 7f 02 00 4d 8d b5 d0 00 00 00 0f\n85 74 f5 ff ff \u003c0f\u003e 0b 4d 8d 77 20 be 04 00 00 00 4c 89 44 24 78 4c 89\nf7 4c 89 8c\n[ 53.982634][ C1] RSP: 0018:ffff8881008f7008 EFLAGS: 00010246\n[ 53.982634][ C1] RAX: 0000000000000000 RBX: ffff8881180b4c80 RCX: 0000000000000000\n[ 53.982634][ C1] RDX: 0000000000000002 RSI: ffff8881180b4d3c RDI: ffff88810bc9cac2\n[ 53.982634][ C1] RBP: ffff8881008f70b8 R08: ffff8881180b4cf4 R09: ffff8881180b4cf0\n[ 53.982634][ C1] R10: ffffed1022999e5c R11: 0000000000000002 R12: 0000000000000590\n[ 53.982634][ C1] R13: ffff88810f940c80 R14: ffff88810f940d50 R15: ffff88810bc9cac0\n[ 53.982634][ C1] FS: 0000000000000000(0000) GS:ffff888235880000(0000) knlGS:0000000000000000\n[ 53.982634][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 53.982634][ C1] CR2: 00007ff5f9b86680 CR3: 0000000108ce8004 CR4: 0000000000170ee0\n[ 53.982634][ C1] Call Trace:\n[ 53.982634][ C1] \u003cTASK\u003e\n[ 53.982634][ C1] tcp_sacktag_walk+0xaba/0x18e0\n[ 53.982634][ C1] tcp_sacktag_write_queue+0xe7b/0x3460\n[ 53.982634][ C1] tcp_ack+0x2666/0x54b0\n[ 53.982634][ C1] tcp_rcv_established+0x4d9/0x20f0\n[ 53.982634][ C1] tcp_v4_do_rcv+0x551/0x810\n[ 53.982634][ C1] tcp_v4_rcv+0x22ed/0x2ed0\n[ 53.982634][ C1] ip_protocol_deliver_rcu+0x96/0xaf0\n[ 53.982634][ C1] ip_local_deliver_finish+0x1e0/0x2f0\n[ 53.982634][ C1] ip_sublist_rcv_finish+0x211/0x440\n[ 53.982634][ C1] ip_list_rcv_finish.constprop.0+0x424/0x660\n[ 53.982634][ C1] ip_list_rcv+0x2c8/0x410\n[ 53.982634][ C1] __netif_receive_skb_list_core+0x65c/0x910\n[ 53.982634][ C1] netif_receive_skb_list_internal+0x5f9/0xcb0\n[ 53.982634][ C1] napi_complete_done+0x188/0x6e0\n[ 53.982634][ C1] gro_cell_poll+0x10c/0x1d0\n[ 53.982634][ C1] __napi_poll+0xa1/0x530\n[ 53.982634][ C1] net_rx_action+0x567/0x1270\n[ 53.982634][ C1] __do_softirq+0x28a/0x9ba\n[ 53.982634][ C1] run_ksoftirqd+0x32/0x60\n[ 53.982634][ C1] smpboot_thread_fn+0x559/0x8c0\n[ 53.982634][ C1] kthread+0x3b9/0x490\n[ 53.982634][ C1] ret_from_fork+0x22/0x30\n[ 53.982634][ C1] \u003c/TASK\u003e\n\nAddress the issue by skipping the GRO stage for shared or cloned skbs.\nTo reduce the chance of OoO, try to unclone the skbs before giving up.\n\nv1 -\u003e v2:\n - use avoid skb_copy and fallback to netif_receive_skb - Eric",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: veth: ensure skb entering GRO are not cloned.",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-47099"
},
{
"category": "external",
"summary": "RHBZ#2267919",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267919"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-47099",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47099"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-47099",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47099"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2024030415-CVE-2021-47099-3127@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2024030415-CVE-2021-47099-3127@gregkh/T"
}
],
"release_date": "2024-03-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: veth: ensure skb entering GRO are not cloned."
},
{
"cve": "CVE-2021-47580",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"discovery_date": "2024-06-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293249"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Linux kernel\u0027s SCSI driver, in sg_copy_buffer() function, where an incorrect type in the min_t() macro can lead to a stack out-of-bounds condition. This occurs due to sign extension of larger values, which may result in memory corruption or DoS.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: scsi: scsi_debug: Fix type in min_t to avoid stack OOB",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-47580"
},
{
"category": "external",
"summary": "RHBZ#2293249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-47580",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47580"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-47580",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-47580"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2024061916-CVE-2021-47580-eac9@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2024061916-CVE-2021-47580-eac9@gregkh/T"
}
],
"release_date": "2024-06-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: scsi: scsi_debug: Fix type in min_t to avoid stack OOB"
},
{
"acknowledgments": [
{
"names": [
"Billy Jheng Bing Jhong"
],
"organization": "STAR Labs"
}
],
"cve": "CVE-2022-0168",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-01-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2037386"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service (DOS) issue was found in the Linux kernel\u2019s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local, privileged (CAP_SYS_ADMIN) attacker to crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: smb2_ioctl_query_info NULL pointer dereference",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0168"
},
{
"category": "external",
"summary": "RHBZ#2037386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2037386"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0168"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0168",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0168"
},
{
"category": "external",
"summary": "https://starlabs.sg/advisories/22/22-0168/",
"url": "https://starlabs.sg/advisories/22/22-0168/"
}
],
"release_date": "2022-03-09T15:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: smb2_ioctl_query_info NULL pointer dereference"
},
{
"cve": "CVE-2022-0617",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-02-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2053632"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference was found in the Linux kernel\u2019s UDF file system functionality in the way the user triggers the udf_file_write_iter function for a malicious UDF image. This flaw allows a local user to crash the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NULL pointer dereference in udf_expand_file_adinicbdue() during writeback",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0617"
},
{
"category": "external",
"summary": "RHBZ#2053632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053632"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0617"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0617",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0617"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7fc3b7c2981bbd1047916ade327beccb90994eee",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7fc3b7c2981bbd1047916ade327beccb90994eee"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ea8569194b43f0f01f0a84c689388542c7254a1f",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ea8569194b43f0f01f0a84c689388542c7254a1f"
},
{
"category": "external",
"summary": "https://lore.kernel.org/lkml/20220114172329.ygzry5rlz64ua2nr@quack3.lan/T/",
"url": "https://lore.kernel.org/lkml/20220114172329.ygzry5rlz64ua2nr@quack3.lan/T/"
}
],
"release_date": "2022-01-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "As the UDF module (udf.ho) will be auto-loaded when required, its use can be disabled by preventing the module from loading with the following instructions:\n\n# echo \"install udf /bin/true\" \u003e\u003e /etc/modprobe.d/disable-udf.conf\n\nIf the system requires this module t\\work correctly, this mitigation may not be suitable.\n\nIf you need further assistance, see the KCS article https://access.redhat.com/solutions/41278 or contact Red Hat Global Support Services.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: NULL pointer dereference in udf_expand_file_adinicbdue() during writeback"
},
{
"acknowledgments": [
{
"names": [
"Halil Pasic"
]
}
],
"cve": "CVE-2022-0854",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2022-02-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2058395"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in the Linux kernel\u2019s DMA subsystem, in the way a user calls DMA_FROM_DEVICE. This flaw allows a local user to read random memory from the kernel space.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: swiotlb information leak with DMA_FROM_DEVICE",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-0854"
},
{
"category": "external",
"summary": "RHBZ#2058395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2058395"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-0854",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0854"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-0854",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0854"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/kernel/dma/swiotlb.c?h=v5.17-rc8\u0026id=aa6f8dcbab473f3a3c7454b74caa46d36cdc5d13",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/kernel/dma/swiotlb.c?h=v5.17-rc8\u0026id=aa6f8dcbab473f3a3c7454b74caa46d36cdc5d13"
}
],
"release_date": "2022-03-07T10:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: swiotlb information leak with DMA_FROM_DEVICE"
},
{
"acknowledgments": [
{
"names": [
"David Bouman"
]
}
],
"cve": "CVE-2022-1016",
"cwe": {
"id": "CWE-909",
"name": "Missing Initialization of Resource"
},
"discovery_date": "2022-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2066614"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle \u0027return\u0027 with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: uninitialized registers on stack in nft_do_chain can cause kernel pointer leakage to UM",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-1016"
},
{
"category": "external",
"summary": "RHBZ#2066614",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066614"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-1016",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1016"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1016",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1016"
},
{
"category": "external",
"summary": "http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/",
"url": "http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/"
},
{
"category": "external",
"summary": "https://seclists.org/oss-sec/2022/q1/205",
"url": "https://seclists.org/oss-sec/2022/q1/205"
}
],
"release_date": "2022-03-28T15:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "On non-containerized deployments of Red Hat Enterprise Linux, you can disable user namespaces by setting user.max_user_namespaces to 0:\n\n# echo \"user.max_user_namespaces=0\" \u003e /etc/sysctl.d/userns.conf\n# sysctl -p /etc/sysctl.d/userns.conf\n\nOn containerized deployments, such as Red Hat OpenShift Container Platform, do not use this mitigation as the functionality is needed to be enabled.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: uninitialized registers on stack in nft_do_chain can cause kernel pointer leakage to UM"
},
{
"acknowledgments": [
{
"names": [
"Takashi Iwai"
]
}
],
"cve": "CVE-2022-1048",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2022-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2066706"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw was found in the Linux kernel\u2019s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: race condition in snd_pcm_hw_free leading to use-after-free",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Keeping the rating as Moderate, because this issue is hard to trigger and requires some permissions for accessing the sound card and only exists if a specific model of the sound card such as Intel 82801 or similar. The known reproducer works only for systems where the /dev/snd/pcmC0D1c device exists.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-1048"
},
{
"category": "external",
"summary": "RHBZ#2066706",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2066706"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-1048",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1048"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1048",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1048"
},
{
"category": "external",
"summary": "https://lore.kernel.org/lkml/20220322170720.3529-5-tiwai@suse.de/T/#m1d3b791b815556012c6be92f1c4a7086b854f7f3",
"url": "https://lore.kernel.org/lkml/20220322170720.3529-5-tiwai@suse.de/T/#m1d3b791b815556012c6be92f1c4a7086b854f7f3"
}
],
"release_date": "2022-03-23T10:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module snd-pcm from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: race condition in snd_pcm_hw_free leading to use-after-free"
},
{
"cve": "CVE-2022-1055",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2022-03-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2070220"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in the tc_new_tfilter function in net/sched/cls_api.c in the Linux kernel. The availability of local, unprivileged user namespaces allows privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free in tc_new_tfilter() in net/sched/cls_api.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in the Linux kernel is shipped in Red Hat Enterprise Linux 8.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-1055"
},
{
"category": "external",
"summary": "RHBZ#2070220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2070220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-1055",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1055"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1055",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1055"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5"
},
{
"category": "external",
"summary": "https://syzkaller.appspot.com/bug?id=2212474c958978ab86525fe6832ac8102c309ffc",
"url": "https://syzkaller.appspot.com/bug?id=2212474c958978ab86525fe6832ac8102c309ffc"
}
],
"release_date": "2022-01-31T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "On non-containerized deployments of Red Hat Enterprise Linux 8, you can disable user namespaces by setting user.max_user_namespaces to 0:\n\n# echo \"user.max_user_namespaces=0\" \u003e /etc/sysctl.d/userns.conf\n# sysctl -p /etc/sysctl.d/userns.conf\n\nOn containerized deployments, such as Red Hat OpenShift Container Platform, do not use this mitigation as the functionality is needed to be enabled.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use-after-free in tc_new_tfilter() in net/sched/cls_api.c"
},
{
"acknowledgments": [
{
"names": [
"Qiuhao Li"
],
"organization": "Harbin Institute of Technology"
},
{
"names": [
"Gaoning Pan",
"Yongkang Jia"
],
"organization": "Zhejiang University"
}
],
"cve": "CVE-2022-1158",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2022-03-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2069793"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in KVM. When updating a guest\u0027s page table entry, vm_pgoff was improperly used as the offset to get the page\u0027s pfn. As vaddr and vm_pgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and potentially corrupt the kernel, resulting in a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-1158"
},
{
"category": "external",
"summary": "RHBZ#2069793",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069793"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-1158",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1158"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2022/04/08/4",
"url": "https://www.openwall.com/lists/oss-security/2022/04/08/4"
}
],
"release_date": "2022-04-07T15:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region"
},
{
"acknowledgments": [
{
"names": [
"Wenqing Liu"
]
}
],
"cve": "CVE-2022-1184",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2022-01-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2070205"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel\u2019s filesystem sub-component. This flaw allows a local attacker with a user privilege to cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free and memory errors in ext4 when mounting and operating on a corrupted image",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-1184"
},
{
"category": "external",
"summary": "RHBZ#2070205",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2070205"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-1184",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1184"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1184",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1184"
}
],
"release_date": "2022-04-18T05:39:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use-after-free and memory errors in ext4 when mounting and operating on a corrupted image"
},
{
"acknowledgments": [
{
"names": [
"Yongkang Jia",
"Gaoning Pan"
],
"organization": "Zhejiang University"
},
{
"names": [
"Qiuhao Li"
],
"organization": "Harbin Institute of Technology"
}
],
"cve": "CVE-2022-1263",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-04-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2072698"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference issue was found in KVM when releasing a vCPU with dirty ring support enabled. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls, causing a kernel oops condition that results in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: KVM: NULL pointer dereference in kvm_dirty_ring_push in virt/kvm/dirty_ring.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Enterprise Linux 6 and 7 did not provide support for KVM dirty ring and therefore are not affected by this issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-1263"
},
{
"category": "external",
"summary": "RHBZ#2072698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2072698"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-1263",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1263"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1263",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1263"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2022/04/07/1",
"url": "https://www.openwall.com/lists/oss-security/2022/04/07/1"
}
],
"release_date": "2022-04-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: KVM: NULL pointer dereference in kvm_dirty_ring_push in virt/kvm/dirty_ring.c"
},
{
"acknowledgments": [
{
"names": [
"Qiuhao Li"
],
"organization": "(Harbin Institute of Technology)"
},
{
"names": [
"Gaoning Pan",
"Yongkang Jia"
],
"organization": "(Zhejiang University)"
}
],
"cve": "CVE-2022-1852",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-05-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2089815"
}
],
"notes": [
{
"category": "description",
"text": "A NULL pointer dereference flaw was found in the Linux kernel\u2019s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: NULL pointer dereference in x86_emulate_insn may lead to DoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-1852"
},
{
"category": "external",
"summary": "RHBZ#2089815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2089815"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-1852",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1852"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1852",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1852"
},
{
"category": "external",
"summary": "https://github.com/torvalds/linux/commit/fee060cd52d69c114b62d1a2948ea9648b5131f9",
"url": "https://github.com/torvalds/linux/commit/fee060cd52d69c114b62d1a2948ea9648b5131f9"
}
],
"release_date": "2022-06-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by preventing the affected KVM module from loading during the boot time, and ensuring the module is added to the blacklist file.\n~~~\nRefer: \nHow do I blacklist a kernel module to prevent it from loading automatically? \nhttps://access.redhat.com/solutions/41278\n~~~",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: NULL pointer dereference in x86_emulate_insn may lead to DoS"
},
{
"cve": "CVE-2022-2078",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"discovery_date": "2022-06-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2096178"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Linux kernel\u0027s nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of service and possibly to run code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: buffer overflow in nft_set_desc_concat_parse()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-2078"
},
{
"category": "external",
"summary": "RHBZ#2096178",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2096178"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-2078",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2078"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-2078",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2078"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/nf_tables_api.c?id=fecf31ee395b0295f2d7260aa29946b7605f7c85",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/net/netfilter/nf_tables_api.c?id=fecf31ee395b0295f2d7260aa29946b7605f7c85"
}
],
"release_date": "2022-05-31T06:30:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: buffer overflow in nft_set_desc_concat_parse()"
},
{
"acknowledgments": [
{
"names": [
"Yongkang Jia",
"Gaoning Pan"
],
"organization": "Zhejiang University"
}
],
"cve": "CVE-2022-2153",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-03-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2069736"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u2019s KVM when attempting to set a SynIC IRQ. This issue makes it possible for a misbehaving VMM to write to SYNIC/STIMER MSRs, causing a NULL pointer dereference. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls, causing a kernel oops condition that results in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: KVM: NULL pointer dereference in kvm_irq_delivery_to_apic_fast()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-2153"
},
{
"category": "external",
"summary": "RHBZ#2069736",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069736"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-2153",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2153"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-2153",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2153"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2022/06/22/1",
"url": "https://www.openwall.com/lists/oss-security/2022/06/22/1"
}
],
"release_date": "2022-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: KVM: NULL pointer dereference in kvm_irq_delivery_to_apic_fast()"
},
{
"cve": "CVE-2022-2503",
"cwe": {
"id": "CWE-288",
"name": "Authentication Bypass Using an Alternate Path or Channel"
},
"discovery_date": "2022-08-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2177862"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module and firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equivalent dm-linear target and bypass verification until reboot. This allows root to bypass LoadPin and can be used to load untrusted and unverified kernel modules and firmware, which implies arbitrary kernel execution and persistence for peripherals that do not verify firmware updates.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: LoadPin bypass via dm-verity table reload",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Starting from the Red Hat Enterprise Linux version 8.7 the bug already fixed (by previous ticket https://bugzilla.redhat.com/show_bug.cgi?id=2012340).\nSimilar for the Red Hat Enterprise Linux version 9.1 it is already fixed (by the ticket https://bugzilla.redhat.com/show_bug.cgi?id=2090507).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-2503"
},
{
"category": "external",
"summary": "RHBZ#2177862",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2177862"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-2503",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2503"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-2503",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2503"
},
{
"category": "external",
"summary": "https://github.com/google/security-research/security/advisories/GHSA-6vq3-w69p-w63m",
"url": "https://github.com/google/security-research/security/advisories/GHSA-6vq3-w69p-w63m"
}
],
"release_date": "2022-08-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: LoadPin bypass via dm-verity table reload"
},
{
"acknowledgments": [
{
"names": [
"Team Orca"
],
"organization": "Sea Security"
}
],
"cve": "CVE-2022-2586",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2022-08-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2114878"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw was found in nf_tables cross-table in the net/netfilter/nf_tables_api.c function in the Linux kernel. This flaw allows a local, privileged attacker to cause a use-after-free problem at the time of table deletion, possibly leading to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: nf_tables cross-table potential use-after-free may lead to local privilege escalation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-2586"
},
{
"category": "external",
"summary": "RHBZ#2114878",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2114878"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-2586",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2586"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-2586",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2586"
},
{
"category": "external",
"summary": "https://lore.kernel.org/netfilter-devel/20220809170148.164591-1-cascardo@canonical.com/T/#t",
"url": "https://lore.kernel.org/netfilter-devel/20220809170148.164591-1-cascardo@canonical.com/T/#t"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2022/08/09/5",
"url": "https://www.openwall.com/lists/oss-security/2022/08/09/5"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2022-08-09T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2024-06-26T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: nf_tables cross-table potential use-after-free may lead to local privilege escalation"
},
{
"cve": "CVE-2022-2639",
"cwe": {
"id": "CWE-681",
"name": "Incorrect Conversion between Numeric Types"
},
"discovery_date": "2022-05-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2084479"
}
],
"notes": [
{
"category": "description",
"text": "An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and reserving memory for a new action of a new flow, the reserve_sfa_size() function does not return -EMSGSIZE as expected, potentially leading to an out-of-bounds write access. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The `openvswitch` is not supported out of the Layered Products subscriptions (OCP, OSP, RHV). There are no Layered Products based on Red Hat Enterprise Linux 7 at the present time. Therefore, this CVE is not planned to be addressed on Red Hat Enterprise Linux 7.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-2639"
},
{
"category": "external",
"summary": "RHBZ#2084479",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084479"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-2639",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-2639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2639"
}
],
"release_date": "2022-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "To mitigate this issue, it is possible to prevent the affected code from being loaded by blocklisting the openvswitch kernel module. For instructions relating to blocklisting a kernel module, please see https://access.redhat.com/solutions/41278.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "kernel: openvswitch: integer underflow leads to out-of-bounds write in reserve_sfa_size()"
},
{
"cve": "CVE-2022-2938",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2022-03-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2120175"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel\u2019s implementation of Pressure Stall Information. While the feature is disabled by default, it could allow an attacker to crash the system or have other memory-corruption side effects.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free when psi trigger is destroyed while being polled",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Pressure Stall Subsystem (PSI) is disabled by default on Red Hat kernels, if the feature has not been explicitly enabled using a kernel boot time parameter of \u0027psi=1\u0027, the system is not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-2938"
},
{
"category": "external",
"summary": "RHBZ#2120175",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2120175"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-2938",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2938"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-2938",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2938"
}
],
"release_date": "2022-01-10T14:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use-after-free when psi trigger is destroyed while being polled"
},
{
"acknowledgments": [
{
"names": [
"Jiasheng Jiang"
]
}
],
"cve": "CVE-2022-3107",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2022-12-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2153060"
}
],
"notes": [
{
"category": "description",
"text": "An issue was discovered in the Linux kernel through 5.16-rc6. netvsc_get_ethtool_stats in drivers/net/hyperv/netvsc_drv.c lacks check of the return value of kvmalloc_array() and will cause the null pointer dereference.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: hv_netvsc: NULL pointer dereference in netvsc_get_ethtool_stats()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-3107"
},
{
"category": "external",
"summary": "RHBZ#2153060",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2153060"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-3107",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3107"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-3107",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3107"
}
],
"release_date": "2022-12-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: hv_netvsc: NULL pointer dereference in netvsc_get_ethtool_stats()"
},
{
"cve": "CVE-2022-20368",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2022-08-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2123695"
}
],
"notes": [
{
"category": "description",
"text": "An out-of-bounds access issue was found in the Linux kernel networking subsystem in the way raw packet sockets (AF_PACKET) used PACKET_COPY_THRESH and mmap operations. A local attacker with CAP_NET_RAW capability could use this flaw to trigger a buffer overflow resulting in a system crash or privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: net/packet: slab-out-of-bounds access in packet_recvmsg()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Only local users with `CAP_NET_RAW` capability enabled can trigger this issue. On Red Hat Enterprise Linux 8 `CAP_NET_RAW` capability can be gained by exploiting unprivileged user namespaces.\n\nIn a default or common use of Red Hat Enterprise Linux 7 unprivileged user namespaces are disabled by default, so local unprivileged users cannot abuse namespaces to grant themselves the `CAP_NET_RAW` capability and potentially elevate their privileges on the system.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-20368"
},
{
"category": "external",
"summary": "RHBZ#2123695",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2123695"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-20368",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20368"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-20368",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-20368"
}
],
"release_date": "2022-03-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "The mitigation is to disable CAP_NET_RAW capability for regular users and executables to prevent access to raw packet sockets (AF_PACKET). On Red Hat Enterprise Linux 8, the mitigation is to either disable unprivileged user namespaces with `sysctl -w user.max_user_namespaces=0` or network namespaces with `sysctl -w user.max_net_namespaces=0`. For more information on how to set sysctl variables on Red Hat Enterprise Linux, please refer to https://access.redhat.com/solutions/2587.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: net/packet: slab-out-of-bounds access in packet_recvmsg()"
},
{
"cve": "CVE-2022-20572",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"discovery_date": "2022-12-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2186545"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel, where it is possible to modify read-only files due to a missing permission check. This flaw can lead to local privilege escalation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: missing DM_TARGET_IMMUTABLE feature flag in verity_target in drivers/md/dm-verity-target.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-20572"
},
{
"category": "external",
"summary": "RHBZ#2186545",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2186545"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-20572",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20572"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-20572",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-20572"
}
],
"release_date": "2022-12-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: missing DM_TARGET_IMMUTABLE feature flag in verity_target in drivers/md/dm-verity-target.c"
},
{
"cve": "CVE-2022-21499",
"cwe": {
"id": "CWE-267",
"name": "Privilege Defined With Unsafe Actions"
},
"discovery_date": "2022-05-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2084183"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the kernel/debug/debug_core.c in the Linux kernel in lockdown mode. This flaw allows an attacker with local access to trigger the debugger, bypass lockdown and write anonymously.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: possible to use the debugger to write zero into a location of choice",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-21499"
},
{
"category": "external",
"summary": "RHBZ#2084183",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084183"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-21499",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21499"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-21499",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21499"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=eadb2f47a3ced5c64b23b90fd2a3463f63726066",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=eadb2f47a3ced5c64b23b90fd2a3463f63726066"
}
],
"release_date": "2022-05-24T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: possible to use the debugger to write zero into a location of choice"
},
{
"cve": "CVE-2022-24448",
"cwe": {
"id": "CWE-908",
"name": "Use of Uninitialized Resource"
},
"discovery_date": "2022-02-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2051444"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Linux kernel. When an application tries to open a directory (using the O_DIRECTORY flag) in a mounted NFS filesystem, a lookup operation is performed. If the NFS server returns a file as a result of the lookup, the NFS filesystem returns an uninitialized file descriptor instead of the expected ENOTDIR value. This flaw leads to the kernel\u0027s data leak into the userspace.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: nfs_atomic_open() returns uninitialized data instead of ENOTDIR",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-24448"
},
{
"category": "external",
"summary": "RHBZ#2051444",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2051444"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-24448",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24448"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24448",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24448"
},
{
"category": "external",
"summary": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac795161c93699d600db16c1a8cc23a65a1eceaf",
"url": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ac795161c93699d600db16c1a8cc23a65a1eceaf"
}
],
"release_date": "2022-02-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "kernel: nfs_atomic_open() returns uninitialized data instead of ENOTDIR"
},
{
"cve": "CVE-2022-26373",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2022-07-30T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2115065"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in hw. In certain processors with Intel\u0027s Enhanced Indirect Branch Restricted Speculation (eIBRS) capabilities, soon after VM exit or IBPB command event, the linear address following the most recent near CALL instruction prior to a VM exit may be used as the Return Stack Buffer (RSB) prediction.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-26373"
},
{
"category": "external",
"summary": "RHBZ#2115065",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2115065"
},
{
"category": "external",
"summary": "RHSB-6971358",
"url": "https://access.redhat.com/solutions/6971358"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-26373",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-26373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-26373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-26373"
},
{
"category": "external",
"summary": "https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/post-barrier-return-stack-buffer-predictions.html",
"url": "https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/post-barrier-return-stack-buffer-predictions.html"
}
],
"release_date": "2022-08-09T06:30:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "hw: cpu: Intel: Post-barrier Return Stack Buffer Predictions"
},
{
"cve": "CVE-2022-27950",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2022-03-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2069408"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in elo_probe in drivers/hid/hid-elo.c in the Human Interface Devices (HID) in the Linux kernel. This issue allows an attacker to cause a denial of service when hid_parse() in elo_probe() fails.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: memory leak in drivers/hid/hid-elo.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-27950"
},
{
"category": "external",
"summary": "RHBZ#2069408",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069408"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-27950",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27950"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-27950",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-27950"
},
{
"category": "external",
"summary": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=817b8b9c5396d2b2d92311b46719aad5d3339dbe",
"url": "https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=817b8b9c5396d2b2d92311b46719aad5d3339dbe"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fbf42729d0e91332e8ce75a1ecce08b8a2dab9c1",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=fbf42729d0e91332e8ce75a1ecce08b8a2dab9c1"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2022/03/13/1",
"url": "https://www.openwall.com/lists/oss-security/2022/03/13/1"
}
],
"release_date": "2022-03-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: memory leak in drivers/hid/hid-elo.c"
},
{
"cve": "CVE-2022-28390",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2022-04-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2073064"
}
],
"notes": [
{
"category": "description",
"text": "A double-free flaw was found in the Linux kernel in the ems_usb_start_xmit function. This flaw allows an attacker to create a memory leak and corrupt the underlying data structure by calling free more than once.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: double free in ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-28390"
},
{
"category": "external",
"summary": "RHBZ#2073064",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2073064"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-28390",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28390"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28390",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28390"
}
],
"release_date": "2022-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: double free in ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c"
},
{
"cve": "CVE-2022-28893",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2022-04-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2074208"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw was found in the Linux kernel\u2019s net/sunrpc/xprt.c function in the Remote Procedure Call (SunRPC) protocol. This flaw allows a local attacker to crash the system, leading to a kernel information leak issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use after free in SUNRPC subsystem",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-28893"
},
{
"category": "external",
"summary": "RHBZ#2074208",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074208"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-28893",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28893"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28893",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28893"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2022/04/11/3",
"url": "http://www.openwall.com/lists/oss-security/2022/04/11/3"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2022/04/11/4",
"url": "http://www.openwall.com/lists/oss-security/2022/04/11/4"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1a3b1bba7c7a5eb8a11513cf88427cb9d77bc60a",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1a3b1bba7c7a5eb8a11513cf88427cb9d77bc60a"
}
],
"release_date": "2022-04-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by preventing the affected SUNRPC driver (sunrpc) kernel module from loading during the boot time, ensuring the module is added to the blacklist file.\n~~~\nRefer: \nHow do I blacklist a kernel module to prevent it from loading automatically? \nhttps://access.redhat.com/solutions/41278\n~~~",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use after free in SUNRPC subsystem"
},
{
"cve": "CVE-2022-29581",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2022-05-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2088021"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free flaw was found in u32_change in net/sched/cls_u32.c in the network subcomponent of the Linux kernel. This flaw allows a local attacker to crash the system, cause a privilege escalation, and leak kernel information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: use-after-free due to improper update of reference count in net/sched/cls_u32.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Keeping the impact Moderate, because only memory leak can happen by default, and both hard to reproduce (at least reproducer not exists yet).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-29581"
},
{
"category": "external",
"summary": "RHBZ#2088021",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2088021"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-29581",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29581"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-29581",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-29581"
},
{
"category": "external",
"summary": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3db09e762dc79584a69c10d74a6b98f89a9979f8",
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3db09e762dc79584a69c10d74a6b98f89a9979f8"
},
{
"category": "external",
"summary": "https://kernel.dance/#3db09e762dc79584a69c10d74a6b98f89a9979f8",
"url": "https://kernel.dance/#3db09e762dc79584a69c10d74a6b98f89a9979f8"
}
],
"release_date": "2022-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module cls_u32 from being loaded by blacklisting the module to prevent it from loading automatically. \n~~~\nhttps://access.redhat.com/solutions/41278 \n~~~",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: use-after-free due to improper update of reference count in net/sched/cls_u32.c"
},
{
"cve": "CVE-2022-36946",
"discovery_date": "2022-08-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2115278"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in the Linux kernel\u2019s Netfilter subsystem in the way a local user uses the libnetfilter_queue when analyzing a corrupted network packet. This flaw allows a local user to crash the system or a remote user to crash the system when the libnetfilter_queue is used by a local user.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: DoS in nfqnl_mangle in net/netfilter/nfnetlink_queue.c",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-36946"
},
{
"category": "external",
"summary": "RHBZ#2115278",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2115278"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-36946",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36946"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-36946",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-36946"
},
{
"category": "external",
"summary": "https://lore.kernel.org/all/20220726104206.2036-1-fw@strlen.de/t/",
"url": "https://lore.kernel.org/all/20220726104206.2036-1-fw@strlen.de/t/"
}
],
"release_date": "2022-07-26T09:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "To mitigate this issue, prevent the module nfnetlink_queue from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blocklist a kernel module to prevent it from loading automatically.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: DoS in nfqnl_mangle in net/netfilter/nfnetlink_queue.c"
},
{
"cve": "CVE-2022-48918",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"discovery_date": "2024-08-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2307171"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability was found in the Linux kernel. When debugfs is set as off in the kernel command line, iwiwifi\u0027s mvm module uses an invalid/unchecked debugfs_dir pointer, resulting in disruption to availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "kernel: iwlwifi: mvm: check debugfs_dir ptr before use",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-48918"
},
{
"category": "external",
"summary": "RHBZ#2307171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-48918",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48918"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-48918",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48918"
},
{
"category": "external",
"summary": "https://lore.kernel.org/linux-cve-announce/2024082217-CVE-2022-48918-9b85@gregkh/T",
"url": "https://lore.kernel.org/linux-cve-announce/2024082217-CVE-2022-48918-9b85@gregkh/T"
}
],
"release_date": "2024-08-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-08T09:25:15+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:7444"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"NFV-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"NFV-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.src",
"RT-8.7.0.GA:kernel-rt-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-core-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debug-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-debuginfo-common-x86_64-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-devel-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-kvm-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-0:4.18.0-425.3.1.rt7.213.el8.x86_64",
"RT-8.7.0.GA:kernel-rt-modules-extra-0:4.18.0-425.3.1.rt7.213.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "kernel: iwlwifi: mvm: check debugfs_dir ptr before use"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…