{"affected":[{"ecosystem_specific":{"binaries":[{"kernel-azure":"5.3.18-150300.38.75.1","kernel-azure-devel":"5.3.18-150300.38.75.1","kernel-devel-azure":"5.3.18-150300.38.75.1","kernel-source-azure":"5.3.18-150300.38.75.1","kernel-syms-azure":"5.3.18-150300.38.75.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 15 SP3","name":"kernel-azure","purl":"pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.3.18-150300.38.75.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-azure":"5.3.18-150300.38.75.1","kernel-azure-devel":"5.3.18-150300.38.75.1","kernel-devel-azure":"5.3.18-150300.38.75.1","kernel-source-azure":"5.3.18-150300.38.75.1","kernel-syms-azure":"5.3.18-150300.38.75.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 15 SP3","name":"kernel-source-azure","purl":"pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.3.18-150300.38.75.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kernel-azure":"5.3.18-150300.38.75.1","kernel-azure-devel":"5.3.18-150300.38.75.1","kernel-devel-azure":"5.3.18-150300.38.75.1","kernel-source-azure":"5.3.18-150300.38.75.1","kernel-syms-azure":"5.3.18-150300.38.75.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 15 SP3","name":"kernel-syms-azure","purl":"pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.3.18-150300.38.75.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"cluster-md-kmp-azure":"5.3.18-150300.38.75.1","dlm-kmp-azure":"5.3.18-150300.38.75.1","gfs2-kmp-azure":"5.3.18-150300.38.75.1","kernel-azure":"5.3.18-150300.38.75.1","kernel-azure-devel":"5.3.18-150300.38.75.1","kernel-azure-extra":"5.3.18-150300.38.75.1","kernel-azure-livepatch-devel":"5.3.18-150300.38.75.1","kernel-azure-optional":"5.3.18-150300.38.75.1","kernel-devel-azure":"5.3.18-150300.38.75.1","kernel-source-azure":"5.3.18-150300.38.75.1","kernel-syms-azure":"5.3.18-150300.38.75.1","kselftests-kmp-azure":"5.3.18-150300.38.75.1","ocfs2-kmp-azure":"5.3.18-150300.38.75.1","reiserfs-kmp-azure":"5.3.18-150300.38.75.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"kernel-azure","purl":"pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.3.18-150300.38.75.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"cluster-md-kmp-azure":"5.3.18-150300.38.75.1","dlm-kmp-azure":"5.3.18-150300.38.75.1","gfs2-kmp-azure":"5.3.18-150300.38.75.1","kernel-azure":"5.3.18-150300.38.75.1","kernel-azure-devel":"5.3.18-150300.38.75.1","kernel-azure-extra":"5.3.18-150300.38.75.1","kernel-azure-livepatch-devel":"5.3.18-150300.38.75.1","kernel-azure-optional":"5.3.18-150300.38.75.1","kernel-devel-azure":"5.3.18-150300.38.75.1","kernel-source-azure":"5.3.18-150300.38.75.1","kernel-syms-azure":"5.3.18-150300.38.75.1","kselftests-kmp-azure":"5.3.18-150300.38.75.1","ocfs2-kmp-azure":"5.3.18-150300.38.75.1","reiserfs-kmp-azure":"5.3.18-150300.38.75.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"kernel-source-azure","purl":"pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.3.18-150300.38.75.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"cluster-md-kmp-azure":"5.3.18-150300.38.75.1","dlm-kmp-azure":"5.3.18-150300.38.75.1","gfs2-kmp-azure":"5.3.18-150300.38.75.1","kernel-azure":"5.3.18-150300.38.75.1","kernel-azure-devel":"5.3.18-150300.38.75.1","kernel-azure-extra":"5.3.18-150300.38.75.1","kernel-azure-livepatch-devel":"5.3.18-150300.38.75.1","kernel-azure-optional":"5.3.18-150300.38.75.1","kernel-devel-azure":"5.3.18-150300.38.75.1","kernel-source-azure":"5.3.18-150300.38.75.1","kernel-syms-azure":"5.3.18-150300.38.75.1","kselftests-kmp-azure":"5.3.18-150300.38.75.1","ocfs2-kmp-azure":"5.3.18-150300.38.75.1","reiserfs-kmp-azure":"5.3.18-150300.38.75.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"kernel-syms-azure","purl":"pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"5.3.18-150300.38.75.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"\nThe SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2022-36946: Fixed an incorrect packet trucation operation which could lead to denial of service (bnc#1201940).\n- CVE-2022-29581: Fixed improper update of reference count in net/sched that could cause root privilege escalation (bnc#1199665).\n- CVE-2022-20166: Fixed several possible memory safety issues due to unsafe operations (bsc#1200598).\n- CVE-2020-36558: Fixed a race condition involving VT_RESIZEX which could lead to a NULL pointer dereference and general protection fault (bnc#1200910).\n- CVE-2020-36557: Fixed a race condition between the VT_DISALLOCATE ioctl and closing/opening of TTYs that could lead to a use-after-free (bnc#1201429).\n- CVE-2021-33655: Fixed an out of bounds write by ioctl cmd FBIOPUT_VSCREENINFO (bnc#1201635).\n- CVE-2021-33656: Fixed an out of bounds write related to ioctl cmd PIO_FONT (bnc#1201636).\n- CVE-2022-21505: Fixed a kernel lockdown bypass via IMA policy (bsc#1201458).\n- CVE-2022-1462: Fixed an out-of-bounds read flaw in the TTY subsystem (bnc#1198829).\n- CVE-2022-1116: Fixed an integer overflow vulnerability in io_uring which allowed a local attacker to escalate privileges to root (bnc#1199647).- CVE-2022-2318: Fixed a use-after-free vulnerability in the timer handler in Rose subsystem that allowed unprivileged attackers to crash the system (bsc#1201251).\n- CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762).\n\nThe following non-security bugs were fixed:\n\n- Fixed a system crash related to the recent RETBLEED mitigation (bsc#1201644, bsc#1201664, bsc#1201672, bsc#1201673, bsc#1201676).\n- qla2xxx: drop patch which prevented nvme port discovery (bsc#1200651 bsc#1200644 bsc#1201954 bsc#1201958).\n- kvm: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930).\n- bpf, cpumap: Remove rcpu pointer from cpu_map_build_skb signature (bsc#1199364).\n- bpf: enable BPF type format (BTF) (jsc#SLE-24559).\n- nfs: avoid NULL pointer dereference when there is unflushed data (bsc#1201196).\n- hv_netvsc: Add (more) validation for untrusted Hyper-V values (bsc#1199364).\n- hv_netvsc: Add comment of netvsc_xdp_xmit() (bsc#1199364).\n- hv_netvsc: Add support for XDP_REDIRECT (bsc#1199364).\n- hv_netvsc: Copy packets sent by Hyper-V out of the receive buffer (bsc#1199364).\n- hv_netvsc: Fix validation in netvsc_linkstatus_callback() (bsc#1199364).\n- kvm/emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930).\n- lkdtm: Disable return thunks in rodata.c (bsc#1178134).\n- net, xdp: Introduce __xdp_build_skb_from_frame utility routine (bsc#1199364).\n- net, xdp: Introduce xdp_build_skb_from_frame utility routine (bsc#1199364).\n- nvme: consider also host_iface when checking ip options (bsc#1199670).\n- powerpc/mobility: wait for memory transfer to complete (bsc#1201846 ltc#198761).\n- powerpc/pseries/mobility: set NMI watchdog factor during an LPM (bsc#1201846 ltc#198761).\n- powerpc/watchdog: introduce a NMI watchdog's factor (bsc#1201846 ltc#198761).\n- scsi: lpfc: Copyright updates for 14.2.0.5 patches (bsc#1201956).\n- scsi: lpfc: Fix attempted FA-PWWN usage after feature disable (bsc#1201956).\n- scsi: lpfc: Fix lost NVMe paths during LIF bounce stress test (bsc#1201956 bsc#1200521).\n- scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE (bsc#1201956).\n- scsi: lpfc: Fix uninitialized cqe field in lpfc_nvme_cancel_iocb() (bsc#1201956).\n- scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input (bsc#1201956).\n- scsi: lpfc: Refactor lpfc_nvmet_prep_abort_wqe() into lpfc_sli_prep_abort_xri() (bsc#1201956).\n- scsi: lpfc: Remove Menlo/Hornet related code (bsc#1201956).\n- scsi: lpfc: Remove extra atomic_inc on cmd_pending in queuecommand after VMID (bsc#1201956).\n- scsi: lpfc: Revert RSCN_MEMENTO workaround for misbehaved configuration (bsc#1201956).\n- scsi: lpfc: Set PU field when providing D_ID in XMIT_ELS_RSP64_CX iocb (bsc#1201956).\n- scsi: lpfc: Update lpfc version to 14.2.0.5 (bsc#1201956).\n- scsi: qla2xxx: Check correct variable in qla24xx_async_gffid() (bsc#1201958).\n- scsi: qla2xxx: Fix discovery issues in FC-AL topology (bsc#1201958).\n- scsi: qla2xxx: Fix imbalance vha->vref_count (bsc#1201958).\n- scsi: qla2xxx: Fix incorrect display of max frame size (bsc#1201958).\n- scsi: qla2xxx: Fix response queue handler reading stale packets (bsc#1201958).\n- scsi: qla2xxx: Fix sparse warning for dport_data (bsc#1201958).\n- scsi: qla2xxx: Update manufacturer details (bsc#1201958).\n- scsi: qla2xxx: Update version to 10.02.07.800-k (bsc#1201958).\n- scsi: qla2xxx: Zero undefined mailbox IN registers (bsc#1201958).\n- scsi: qla2xxx: edif: Fix dropped IKE message (bsc#1201958).\n- watchdog: export lockup_detector_reconfigure (bsc#1201846 ltc#198761).\n- x86/bugs: Remove apostrophe typo (bsc#1178134).\n- x86/entry: Remove skip_r11rcx (bsc#1201644).\n- x86/retbleed: Add fine grained Kconfig knobs (bsc#1178134).\n- xen/netback: avoid entering xenvif_rx_next_skb() with an empty rx queue (bsc#1201381).\n","id":"SUSE-SU-2022:2741-1","modified":"2022-08-10T07:23:06Z","published":"2022-08-10T07:23:06Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20222741-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1178134"},{"type":"REPORT","url":"https://bugzilla.suse.com/1198829"},{"type":"REPORT","url":"https://bugzilla.suse.com/1199364"},{"type":"REPORT","url":"https://bugzilla.suse.com/1199647"},{"type":"REPORT","url":"https://bugzilla.suse.com/1199665"},{"type":"REPORT","url":"https://bugzilla.suse.com/1199670"},{"type":"REPORT","url":"https://bugzilla.suse.com/1200521"},{"type":"REPORT","url":"https://bugzilla.suse.com/1200598"},{"type":"REPORT","url":"https://bugzilla.suse.com/1200644"},{"type":"REPORT","url":"https://bugzilla.suse.com/1200651"},{"type":"REPORT","url":"https://bugzilla.suse.com/1200762"},{"type":"REPORT","url":"https://bugzilla.suse.com/1200910"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201196"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201206"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201251"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201381"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201429"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201458"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201635"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201636"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201644"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201664"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201672"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201673"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201676"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201846"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201930"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201940"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201954"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201956"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201958"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36557"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-36558"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-33655"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-33656"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-1116"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-1462"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-20166"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-21505"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-2318"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-26365"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-29581"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-32250"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-33740"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-33741"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-33742"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-36946"}],"related":["CVE-2020-36557","CVE-2020-36558","CVE-2021-33655","CVE-2021-33656","CVE-2022-1116","CVE-2022-1462","CVE-2022-20166","CVE-2022-21505","CVE-2022-2318","CVE-2022-26365","CVE-2022-29581","CVE-2022-32250","CVE-2022-33740","CVE-2022-33741","CVE-2022-33742","CVE-2022-36946"],"summary":"Security update for the Linux Kernel","upstream":["CVE-2020-36557","CVE-2020-36558","CVE-2021-33655","CVE-2021-33656","CVE-2022-1116","CVE-2022-1462","CVE-2022-20166","CVE-2022-21505","CVE-2022-2318","CVE-2022-26365","CVE-2022-29581","CVE-2022-32250","CVE-2022-33740","CVE-2022-33741","CVE-2022-33742","CVE-2022-36946"]}