SUSE-SU-2022:1283-1
Vulnerability from csaf_suse - Published: 2022-04-20 10:59 - Updated: 2022-04-20 10:59Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch: The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197227)
- CVE-2022-1048: Fixed a race Condition in snd_pcm_hw_free leading to use-after-free due to the AB/BA lock with buffer_mutex and mmap_lock. (bsc#1197331)
- CVE-2022-0850: Fixed a kernel information leak vulnerability in iov_iter.c. (bsc#1196761)
- CVE-2021-45868: Fixed a wrong validation check in fs/quota/quota_tree.c which could lead to an use-after-free if there is a corrupted quota file. (bnc#1197366)
- CVE-2022-26966: Fixed an issue in drivers/net/usb/sr9700.c, which allowed attackers to obtain sensitive information from the memory via crafted frame lengths from a USB device. (bsc#1196836)
- CVE-2022-23036,CVE-2022-23037,CVE-2022-23038,CVE-2022-23039,CVE-2022-23040,CVE-2022-23041,CVE-2022-23042: Fixed multiple issues which could have lead to read/write access to memory pages or denial of service. These issues are related to the Xen PV device frontend drivers. (bsc#1196488)
- CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could crash the system or corrupt the system memory. (bsc#1196830)
The following non-security bugs were fixed:
- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (bsc#1196018).
- llc: fix netdevice reference leaks in llc_ui_bind() (git-fixes).
- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (bsc#1196018).
- net: usb: ax88179_178a: fix packet alignment padding (bsc#1196018).
- sched/autogroup: Fix possible Spectre-v1 indexing for (git-fixes)
- sr9700: sanity check for packet length (bsc#1196836).
- usb: host: xen-hcd: add missing unlock in error path (git-fixes).
- xen/usb: do not use gnttab_end_foreign_access() in xenhcd_gnttab_done() (bsc#1196488, XSA-396).
Patchnames: SUSE-2022-1283,SUSE-SLE-SERVER-12-SP2-BCL-2022-1283
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.4 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.6 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197227)\n- CVE-2022-1048: Fixed a race Condition in snd_pcm_hw_free leading to use-after-free due to the AB/BA lock with buffer_mutex and mmap_lock. (bsc#1197331)\n- CVE-2022-0850: Fixed a kernel information leak vulnerability in iov_iter.c. (bsc#1196761)\n- CVE-2021-45868: Fixed a wrong validation check in fs/quota/quota_tree.c which could lead to an use-after-free if there is a corrupted quota file. (bnc#1197366)\n- CVE-2022-26966: Fixed an issue in drivers/net/usb/sr9700.c, which allowed attackers to obtain sensitive information from the memory via crafted frame lengths from a USB device. (bsc#1196836)\n- CVE-2022-23036,CVE-2022-23037,CVE-2022-23038,CVE-2022-23039,CVE-2022-23040,CVE-2022-23041,CVE-2022-23042: Fixed multiple issues which could have lead to read/write access to memory pages or denial of service. These issues are related to the Xen PV device frontend drivers. (bsc#1196488)\n- CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could crash the system or corrupt the system memory. (bsc#1196830)\n\nThe following non-security bugs were fixed:\n\n- ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32 (bsc#1196018).\n- llc: fix netdevice reference leaks in llc_ui_bind() (git-fixes).\n- net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (bsc#1196018).\n- net: usb: ax88179_178a: fix packet alignment padding (bsc#1196018).\n- sched/autogroup: Fix possible Spectre-v1 indexing for (git-fixes)\n- sr9700: sanity check for packet length (bsc#1196836).\n- usb: host: xen-hcd: add missing unlock in error path (git-fixes).\n- xen/usb: do not use gnttab_end_foreign_access() in xenhcd_gnttab_done() (bsc#1196488, XSA-396).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-1283,SUSE-SLE-SERVER-12-SP2-BCL-2022-1283",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1283-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:1283-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20221283-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:1283-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010777.html"
},
{
"category": "self",
"summary": "SUSE Bug 1189562",
"url": "https://bugzilla.suse.com/1189562"
},
{
"category": "self",
"summary": "SUSE Bug 1196018",
"url": "https://bugzilla.suse.com/1196018"
},
{
"category": "self",
"summary": "SUSE Bug 1196488",
"url": "https://bugzilla.suse.com/1196488"
},
{
"category": "self",
"summary": "SUSE Bug 1196761",
"url": "https://bugzilla.suse.com/1196761"
},
{
"category": "self",
"summary": "SUSE Bug 1196830",
"url": "https://bugzilla.suse.com/1196830"
},
{
"category": "self",
"summary": "SUSE Bug 1196836",
"url": "https://bugzilla.suse.com/1196836"
},
{
"category": "self",
"summary": "SUSE Bug 1197227",
"url": "https://bugzilla.suse.com/1197227"
},
{
"category": "self",
"summary": "SUSE Bug 1197331",
"url": "https://bugzilla.suse.com/1197331"
},
{
"category": "self",
"summary": "SUSE Bug 1197366",
"url": "https://bugzilla.suse.com/1197366"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-45868 page",
"url": "https://www.suse.com/security/cve/CVE-2021-45868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0850 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1016 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1048 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1048/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23036 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23036/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23037 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23038 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23039 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23040 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23040/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23041 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-23042 page",
"url": "https://www.suse.com/security/cve/CVE-2022-23042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-26490 page",
"url": "https://www.suse.com/security/cve/CVE-2022-26490/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-26966 page",
"url": "https://www.suse.com/security/cve/CVE-2022-26966/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2022-04-20T10:59:42Z",
"generator": {
"date": "2022-04-20T10:59:42Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:1283-1",
"initial_release_date": "2022-04-20T10:59:42Z",
"revision_history": [
{
"date": "2022-04-20T10:59:42Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.4.121-92.172.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-4.4.121-92.172.1.aarch64",
"product_id": "cluster-md-kmp-default-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product": {
"name": "cluster-md-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product_id": "cluster-md-kmp-vanilla-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-default-4.4.121-92.172.1.aarch64",
"product": {
"name": "cluster-network-kmp-default-4.4.121-92.172.1.aarch64",
"product_id": "cluster-network-kmp-default-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product": {
"name": "cluster-network-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product_id": "cluster-network-kmp-vanilla-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.4.121-92.172.1.aarch64",
"product": {
"name": "dlm-kmp-default-4.4.121-92.172.1.aarch64",
"product_id": "dlm-kmp-default-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product": {
"name": "dlm-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product_id": "dlm-kmp-vanilla-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.4.121-92.172.1.aarch64",
"product": {
"name": "gfs2-kmp-default-4.4.121-92.172.1.aarch64",
"product_id": "gfs2-kmp-default-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product": {
"name": "gfs2-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product_id": "gfs2-kmp-vanilla-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-default-4.4.121-92.172.1.aarch64",
"product_id": "kernel-default-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-default-base-4.4.121-92.172.1.aarch64",
"product_id": "kernel-default-base-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-default-devel-4.4.121-92.172.1.aarch64",
"product_id": "kernel-default-devel-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-default-extra-4.4.121-92.172.1.aarch64",
"product_id": "kernel-default-extra-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-default-kgraft-4.4.121-92.172.1.aarch64",
"product_id": "kernel-default-kgraft-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-obs-build-4.4.121-92.172.1.aarch64",
"product_id": "kernel-obs-build-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-obs-qa-4.4.121-92.172.1.aarch64",
"product_id": "kernel-obs-qa-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-syms-4.4.121-92.172.1.aarch64",
"product_id": "kernel-syms-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-vanilla-4.4.121-92.172.1.aarch64",
"product_id": "kernel-vanilla-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-vanilla-base-4.4.121-92.172.1.aarch64",
"product_id": "kernel-vanilla-base-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.4.121-92.172.1.aarch64",
"product": {
"name": "kernel-vanilla-devel-4.4.121-92.172.1.aarch64",
"product_id": "kernel-vanilla-devel-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.4.121-92.172.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-4.4.121-92.172.1.aarch64",
"product_id": "ocfs2-kmp-default-4.4.121-92.172.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product": {
"name": "ocfs2-kmp-vanilla-4.4.121-92.172.1.aarch64",
"product_id": "ocfs2-kmp-vanilla-4.4.121-92.172.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-4.4.121-92.172.1.noarch",
"product": {
"name": "kernel-devel-4.4.121-92.172.1.noarch",
"product_id": "kernel-devel-4.4.121-92.172.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-4.4.121-92.172.1.noarch",
"product": {
"name": "kernel-docs-4.4.121-92.172.1.noarch",
"product_id": "kernel-docs-4.4.121-92.172.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-4.4.121-92.172.1.noarch",
"product": {
"name": "kernel-docs-html-4.4.121-92.172.1.noarch",
"product_id": "kernel-docs-html-4.4.121-92.172.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-pdf-4.4.121-92.172.1.noarch",
"product": {
"name": "kernel-docs-pdf-4.4.121-92.172.1.noarch",
"product_id": "kernel-docs-pdf-4.4.121-92.172.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-4.4.121-92.172.1.noarch",
"product": {
"name": "kernel-macros-4.4.121-92.172.1.noarch",
"product_id": "kernel-macros-4.4.121-92.172.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-4.4.121-92.172.1.noarch",
"product": {
"name": "kernel-source-4.4.121-92.172.1.noarch",
"product_id": "kernel-source-4.4.121-92.172.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-4.4.121-92.172.1.noarch",
"product": {
"name": "kernel-source-vanilla-4.4.121-92.172.1.noarch",
"product_id": "kernel-source-vanilla-4.4.121-92.172.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-debug-4.4.121-92.172.1.ppc64le",
"product": {
"name": "cluster-md-kmp-debug-4.4.121-92.172.1.ppc64le",
"product_id": "cluster-md-kmp-debug-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.4.121-92.172.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-4.4.121-92.172.1.ppc64le",
"product_id": "cluster-md-kmp-default-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product": {
"name": "cluster-md-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product_id": "cluster-md-kmp-vanilla-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-debug-4.4.121-92.172.1.ppc64le",
"product": {
"name": "cluster-network-kmp-debug-4.4.121-92.172.1.ppc64le",
"product_id": "cluster-network-kmp-debug-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-default-4.4.121-92.172.1.ppc64le",
"product": {
"name": "cluster-network-kmp-default-4.4.121-92.172.1.ppc64le",
"product_id": "cluster-network-kmp-default-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product": {
"name": "cluster-network-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product_id": "cluster-network-kmp-vanilla-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-debug-4.4.121-92.172.1.ppc64le",
"product": {
"name": "dlm-kmp-debug-4.4.121-92.172.1.ppc64le",
"product_id": "dlm-kmp-debug-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.4.121-92.172.1.ppc64le",
"product": {
"name": "dlm-kmp-default-4.4.121-92.172.1.ppc64le",
"product_id": "dlm-kmp-default-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product": {
"name": "dlm-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product_id": "dlm-kmp-vanilla-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-debug-4.4.121-92.172.1.ppc64le",
"product": {
"name": "gfs2-kmp-debug-4.4.121-92.172.1.ppc64le",
"product_id": "gfs2-kmp-debug-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.4.121-92.172.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-4.4.121-92.172.1.ppc64le",
"product_id": "gfs2-kmp-default-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product": {
"name": "gfs2-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product_id": "gfs2-kmp-vanilla-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-debug-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-debug-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-base-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-debug-base-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-debug-base-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-debug-devel-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-debug-devel-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-extra-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-debug-extra-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-debug-extra-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-debug-kgraft-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-debug-kgraft-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-debug-kgraft-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-default-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-default-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-default-base-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-default-base-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-default-devel-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-default-devel-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-default-extra-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-default-extra-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-default-kgraft-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-default-kgraft-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-obs-build-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-obs-build-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-obs-qa-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-obs-qa-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-syms-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-syms-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-vanilla-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-vanilla-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-vanilla-base-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-vanilla-base-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.4.121-92.172.1.ppc64le",
"product": {
"name": "kernel-vanilla-devel-4.4.121-92.172.1.ppc64le",
"product_id": "kernel-vanilla-devel-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-debug-4.4.121-92.172.1.ppc64le",
"product": {
"name": "ocfs2-kmp-debug-4.4.121-92.172.1.ppc64le",
"product_id": "ocfs2-kmp-debug-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.4.121-92.172.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-4.4.121-92.172.1.ppc64le",
"product_id": "ocfs2-kmp-default-4.4.121-92.172.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product": {
"name": "ocfs2-kmp-vanilla-4.4.121-92.172.1.ppc64le",
"product_id": "ocfs2-kmp-vanilla-4.4.121-92.172.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.4.121-92.172.1.s390x",
"product": {
"name": "cluster-md-kmp-default-4.4.121-92.172.1.s390x",
"product_id": "cluster-md-kmp-default-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-vanilla-4.4.121-92.172.1.s390x",
"product": {
"name": "cluster-md-kmp-vanilla-4.4.121-92.172.1.s390x",
"product_id": "cluster-md-kmp-vanilla-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-default-4.4.121-92.172.1.s390x",
"product": {
"name": "cluster-network-kmp-default-4.4.121-92.172.1.s390x",
"product_id": "cluster-network-kmp-default-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-vanilla-4.4.121-92.172.1.s390x",
"product": {
"name": "cluster-network-kmp-vanilla-4.4.121-92.172.1.s390x",
"product_id": "cluster-network-kmp-vanilla-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.4.121-92.172.1.s390x",
"product": {
"name": "dlm-kmp-default-4.4.121-92.172.1.s390x",
"product_id": "dlm-kmp-default-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-vanilla-4.4.121-92.172.1.s390x",
"product": {
"name": "dlm-kmp-vanilla-4.4.121-92.172.1.s390x",
"product_id": "dlm-kmp-vanilla-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.4.121-92.172.1.s390x",
"product": {
"name": "gfs2-kmp-default-4.4.121-92.172.1.s390x",
"product_id": "gfs2-kmp-default-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-vanilla-4.4.121-92.172.1.s390x",
"product": {
"name": "gfs2-kmp-vanilla-4.4.121-92.172.1.s390x",
"product_id": "gfs2-kmp-vanilla-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-default-4.4.121-92.172.1.s390x",
"product_id": "kernel-default-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-default-base-4.4.121-92.172.1.s390x",
"product_id": "kernel-default-base-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-default-devel-4.4.121-92.172.1.s390x",
"product_id": "kernel-default-devel-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-default-extra-4.4.121-92.172.1.s390x",
"product_id": "kernel-default-extra-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-default-kgraft-4.4.121-92.172.1.s390x",
"product_id": "kernel-default-kgraft-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-man-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-default-man-4.4.121-92.172.1.s390x",
"product_id": "kernel-default-man-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-obs-build-4.4.121-92.172.1.s390x",
"product_id": "kernel-obs-build-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-obs-qa-4.4.121-92.172.1.s390x",
"product_id": "kernel-obs-qa-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-syms-4.4.121-92.172.1.s390x",
"product_id": "kernel-syms-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-vanilla-4.4.121-92.172.1.s390x",
"product_id": "kernel-vanilla-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-vanilla-base-4.4.121-92.172.1.s390x",
"product_id": "kernel-vanilla-base-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-vanilla-devel-4.4.121-92.172.1.s390x",
"product_id": "kernel-vanilla-devel-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-4.4.121-92.172.1.s390x",
"product": {
"name": "kernel-zfcpdump-4.4.121-92.172.1.s390x",
"product_id": "kernel-zfcpdump-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.4.121-92.172.1.s390x",
"product": {
"name": "ocfs2-kmp-default-4.4.121-92.172.1.s390x",
"product_id": "ocfs2-kmp-default-4.4.121-92.172.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-vanilla-4.4.121-92.172.1.s390x",
"product": {
"name": "ocfs2-kmp-vanilla-4.4.121-92.172.1.s390x",
"product_id": "ocfs2-kmp-vanilla-4.4.121-92.172.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-debug-4.4.121-92.172.1.x86_64",
"product": {
"name": "cluster-md-kmp-debug-4.4.121-92.172.1.x86_64",
"product_id": "cluster-md-kmp-debug-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.4.121-92.172.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-4.4.121-92.172.1.x86_64",
"product_id": "cluster-md-kmp-default-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product": {
"name": "cluster-md-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product_id": "cluster-md-kmp-vanilla-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-debug-4.4.121-92.172.1.x86_64",
"product": {
"name": "cluster-network-kmp-debug-4.4.121-92.172.1.x86_64",
"product_id": "cluster-network-kmp-debug-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-default-4.4.121-92.172.1.x86_64",
"product": {
"name": "cluster-network-kmp-default-4.4.121-92.172.1.x86_64",
"product_id": "cluster-network-kmp-default-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "cluster-network-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product": {
"name": "cluster-network-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product_id": "cluster-network-kmp-vanilla-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-debug-4.4.121-92.172.1.x86_64",
"product": {
"name": "dlm-kmp-debug-4.4.121-92.172.1.x86_64",
"product_id": "dlm-kmp-debug-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.4.121-92.172.1.x86_64",
"product": {
"name": "dlm-kmp-default-4.4.121-92.172.1.x86_64",
"product_id": "dlm-kmp-default-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product": {
"name": "dlm-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product_id": "dlm-kmp-vanilla-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-debug-4.4.121-92.172.1.x86_64",
"product": {
"name": "gfs2-kmp-debug-4.4.121-92.172.1.x86_64",
"product_id": "gfs2-kmp-debug-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.4.121-92.172.1.x86_64",
"product": {
"name": "gfs2-kmp-default-4.4.121-92.172.1.x86_64",
"product_id": "gfs2-kmp-default-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product": {
"name": "gfs2-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product_id": "gfs2-kmp-vanilla-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-debug-4.4.121-92.172.1.x86_64",
"product_id": "kernel-debug-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-base-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-debug-base-4.4.121-92.172.1.x86_64",
"product_id": "kernel-debug-base-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-debug-devel-4.4.121-92.172.1.x86_64",
"product_id": "kernel-debug-devel-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-extra-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-debug-extra-4.4.121-92.172.1.x86_64",
"product_id": "kernel-debug-extra-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-debug-kgraft-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-debug-kgraft-4.4.121-92.172.1.x86_64",
"product_id": "kernel-debug-kgraft-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-default-4.4.121-92.172.1.x86_64",
"product_id": "kernel-default-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-default-base-4.4.121-92.172.1.x86_64",
"product_id": "kernel-default-base-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-default-devel-4.4.121-92.172.1.x86_64",
"product_id": "kernel-default-devel-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-default-extra-4.4.121-92.172.1.x86_64",
"product_id": "kernel-default-extra-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-default-kgraft-4.4.121-92.172.1.x86_64",
"product_id": "kernel-default-kgraft-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-obs-build-4.4.121-92.172.1.x86_64",
"product_id": "kernel-obs-build-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-obs-qa-4.4.121-92.172.1.x86_64",
"product_id": "kernel-obs-qa-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-syms-4.4.121-92.172.1.x86_64",
"product_id": "kernel-syms-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-vanilla-4.4.121-92.172.1.x86_64",
"product_id": "kernel-vanilla-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-vanilla-base-4.4.121-92.172.1.x86_64",
"product_id": "kernel-vanilla-base-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.4.121-92.172.1.x86_64",
"product": {
"name": "kernel-vanilla-devel-4.4.121-92.172.1.x86_64",
"product_id": "kernel-vanilla-devel-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-debug-4.4.121-92.172.1.x86_64",
"product": {
"name": "ocfs2-kmp-debug-4.4.121-92.172.1.x86_64",
"product_id": "ocfs2-kmp-debug-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.4.121-92.172.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-4.4.121-92.172.1.x86_64",
"product_id": "ocfs2-kmp-default-4.4.121-92.172.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product": {
"name": "ocfs2-kmp-vanilla-4.4.121-92.172.1.x86_64",
"product_id": "ocfs2-kmp-vanilla-4.4.121-92.172.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-4.4.121-92.172.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64"
},
"product_reference": "kernel-default-4.4.121-92.172.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-4.4.121-92.172.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64"
},
"product_reference": "kernel-default-base-4.4.121-92.172.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-4.4.121-92.172.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64"
},
"product_reference": "kernel-default-devel-4.4.121-92.172.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-4.4.121-92.172.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch"
},
"product_reference": "kernel-devel-4.4.121-92.172.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-4.4.121-92.172.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch"
},
"product_reference": "kernel-macros-4.4.121-92.172.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-4.4.121-92.172.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch"
},
"product_reference": "kernel-source-4.4.121-92.172.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-4.4.121-92.172.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
},
"product_reference": "kernel-syms-4.4.121-92.172.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-45868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-45868"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can, for example, lead to a kernel/locking/rwsem.c use-after-free if there is a corrupted quota file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-45868",
"url": "https://www.suse.com/security/cve/CVE-2021-45868"
},
{
"category": "external",
"summary": "SUSE Bug 1197366 for CVE-2021-45868",
"url": "https://bugzilla.suse.com/1197366"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "moderate"
}
],
"title": "CVE-2021-45868"
},
{
"cve": "CVE-2022-0850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0850"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in linux kernel, where an information leak occurs via ext4_extent_header to userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0850",
"url": "https://www.suse.com/security/cve/CVE-2022-0850"
},
{
"category": "external",
"summary": "SUSE Bug 1196761 for CVE-2022-0850",
"url": "https://bugzilla.suse.com/1196761"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "moderate"
}
],
"title": "CVE-2022-0850"
},
{
"cve": "CVE-2022-1016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1016"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle \u0027return\u0027 with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1016",
"url": "https://www.suse.com/security/cve/CVE-2022-1016"
},
{
"category": "external",
"summary": "SUSE Bug 1197227 for CVE-2022-1016",
"url": "https://bugzilla.suse.com/1197227"
},
{
"category": "external",
"summary": "SUSE Bug 1197335 for CVE-2022-1016",
"url": "https://bugzilla.suse.com/1197335"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "moderate"
}
],
"title": "CVE-2022-1016"
},
{
"cve": "CVE-2022-1048",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1048"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free flaw was found in the Linux kernel\u0027s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1048",
"url": "https://www.suse.com/security/cve/CVE-2022-1048"
},
{
"category": "external",
"summary": "SUSE Bug 1197331 for CVE-2022-1048",
"url": "https://bugzilla.suse.com/1197331"
},
{
"category": "external",
"summary": "SUSE Bug 1197597 for CVE-2022-1048",
"url": "https://bugzilla.suse.com/1197597"
},
{
"category": "external",
"summary": "SUSE Bug 1200041 for CVE-2022-1048",
"url": "https://bugzilla.suse.com/1200041"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-1048",
"url": "https://bugzilla.suse.com/1204132"
},
{
"category": "external",
"summary": "SUSE Bug 1212325 for CVE-2022-1048",
"url": "https://bugzilla.suse.com/1212325"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "important"
}
],
"title": "CVE-2022-1048"
},
{
"cve": "CVE-2022-23036",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23036"
}
],
"notes": [
{
"category": "general",
"text": "Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23036",
"url": "https://www.suse.com/security/cve/CVE-2022-23036"
},
{
"category": "external",
"summary": "SUSE Bug 1196488 for CVE-2022-23036",
"url": "https://bugzilla.suse.com/1196488"
},
{
"category": "external",
"summary": "SUSE Bug 1199099 for CVE-2022-23036",
"url": "https://bugzilla.suse.com/1199099"
},
{
"category": "external",
"summary": "SUSE Bug 1199141 for CVE-2022-23036",
"url": "https://bugzilla.suse.com/1199141"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-23036",
"url": "https://bugzilla.suse.com/1204132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "important"
}
],
"title": "CVE-2022-23036"
},
{
"cve": "CVE-2022-23037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23037"
}
],
"notes": [
{
"category": "general",
"text": "Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23037",
"url": "https://www.suse.com/security/cve/CVE-2022-23037"
},
{
"category": "external",
"summary": "SUSE Bug 1196488 for CVE-2022-23037",
"url": "https://bugzilla.suse.com/1196488"
},
{
"category": "external",
"summary": "SUSE Bug 1199099 for CVE-2022-23037",
"url": "https://bugzilla.suse.com/1199099"
},
{
"category": "external",
"summary": "SUSE Bug 1199141 for CVE-2022-23037",
"url": "https://bugzilla.suse.com/1199141"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-23037",
"url": "https://bugzilla.suse.com/1204132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "important"
}
],
"title": "CVE-2022-23037"
},
{
"cve": "CVE-2022-23038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23038"
}
],
"notes": [
{
"category": "general",
"text": "Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23038",
"url": "https://www.suse.com/security/cve/CVE-2022-23038"
},
{
"category": "external",
"summary": "SUSE Bug 1196488 for CVE-2022-23038",
"url": "https://bugzilla.suse.com/1196488"
},
{
"category": "external",
"summary": "SUSE Bug 1199099 for CVE-2022-23038",
"url": "https://bugzilla.suse.com/1199099"
},
{
"category": "external",
"summary": "SUSE Bug 1199141 for CVE-2022-23038",
"url": "https://bugzilla.suse.com/1199141"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-23038",
"url": "https://bugzilla.suse.com/1204132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "important"
}
],
"title": "CVE-2022-23038"
},
{
"cve": "CVE-2022-23039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23039"
}
],
"notes": [
{
"category": "general",
"text": "Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23039",
"url": "https://www.suse.com/security/cve/CVE-2022-23039"
},
{
"category": "external",
"summary": "SUSE Bug 1196488 for CVE-2022-23039",
"url": "https://bugzilla.suse.com/1196488"
},
{
"category": "external",
"summary": "SUSE Bug 1199099 for CVE-2022-23039",
"url": "https://bugzilla.suse.com/1199099"
},
{
"category": "external",
"summary": "SUSE Bug 1199141 for CVE-2022-23039",
"url": "https://bugzilla.suse.com/1199141"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-23039",
"url": "https://bugzilla.suse.com/1204132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "important"
}
],
"title": "CVE-2022-23039"
},
{
"cve": "CVE-2022-23040",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23040"
}
],
"notes": [
{
"category": "general",
"text": "Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23040",
"url": "https://www.suse.com/security/cve/CVE-2022-23040"
},
{
"category": "external",
"summary": "SUSE Bug 1196488 for CVE-2022-23040",
"url": "https://bugzilla.suse.com/1196488"
},
{
"category": "external",
"summary": "SUSE Bug 1199099 for CVE-2022-23040",
"url": "https://bugzilla.suse.com/1199099"
},
{
"category": "external",
"summary": "SUSE Bug 1199141 for CVE-2022-23040",
"url": "https://bugzilla.suse.com/1199141"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-23040",
"url": "https://bugzilla.suse.com/1204132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "important"
}
],
"title": "CVE-2022-23040"
},
{
"cve": "CVE-2022-23041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23041"
}
],
"notes": [
{
"category": "general",
"text": "Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23041",
"url": "https://www.suse.com/security/cve/CVE-2022-23041"
},
{
"category": "external",
"summary": "SUSE Bug 1196488 for CVE-2022-23041",
"url": "https://bugzilla.suse.com/1196488"
},
{
"category": "external",
"summary": "SUSE Bug 1199099 for CVE-2022-23041",
"url": "https://bugzilla.suse.com/1199099"
},
{
"category": "external",
"summary": "SUSE Bug 1199141 for CVE-2022-23041",
"url": "https://bugzilla.suse.com/1199141"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-23041",
"url": "https://bugzilla.suse.com/1204132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "important"
}
],
"title": "CVE-2022-23041"
},
{
"cve": "CVE-2022-23042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-23042"
}
],
"notes": [
{
"category": "general",
"text": "Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished. The xenbus driver has a similar problem, as it doesn\u0027t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-23042",
"url": "https://www.suse.com/security/cve/CVE-2022-23042"
},
{
"category": "external",
"summary": "SUSE Bug 1196488 for CVE-2022-23042",
"url": "https://bugzilla.suse.com/1196488"
},
{
"category": "external",
"summary": "SUSE Bug 1199099 for CVE-2022-23042",
"url": "https://bugzilla.suse.com/1199099"
},
{
"category": "external",
"summary": "SUSE Bug 1199141 for CVE-2022-23042",
"url": "https://bugzilla.suse.com/1199141"
},
{
"category": "external",
"summary": "SUSE Bug 1204132 for CVE-2022-23042",
"url": "https://bugzilla.suse.com/1204132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "important"
}
],
"title": "CVE-2022-23042"
},
{
"cve": "CVE-2022-26490",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-26490"
}
],
"notes": [
{
"category": "general",
"text": "st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-26490",
"url": "https://www.suse.com/security/cve/CVE-2022-26490"
},
{
"category": "external",
"summary": "SUSE Bug 1196830 for CVE-2022-26490",
"url": "https://bugzilla.suse.com/1196830"
},
{
"category": "external",
"summary": "SUSE Bug 1201656 for CVE-2022-26490",
"url": "https://bugzilla.suse.com/1201656"
},
{
"category": "external",
"summary": "SUSE Bug 1201969 for CVE-2022-26490",
"url": "https://bugzilla.suse.com/1201969"
},
{
"category": "external",
"summary": "SUSE Bug 1211495 for CVE-2022-26490",
"url": "https://bugzilla.suse.com/1211495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "important"
}
],
"title": "CVE-2022-26490"
},
{
"cve": "CVE-2022-26966",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-26966"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-26966",
"url": "https://www.suse.com/security/cve/CVE-2022-26966"
},
{
"category": "external",
"summary": "SUSE Bug 1196836 for CVE-2022-26966",
"url": "https://bugzilla.suse.com/1196836"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-base-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-default-devel-4.4.121-92.172.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-devel-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-macros-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-source-4.4.121-92.172.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:kernel-syms-4.4.121-92.172.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-20T10:59:42Z",
"details": "moderate"
}
],
"title": "CVE-2022-26966"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…