[LU-16173] kernel update [SLES15 SP3 5.3.18-150300.59.93.1] Created: 20/Sep/22  Updated: 27/Oct/22  Resolved: 25/Oct/22

Status: Resolved
Project: Lustre
Component/s: None
Affects Version/s: None
Fix Version/s: Lustre 2.16.0, Lustre 2.15.2

Type: Improvement Priority: Minor
Reporter: Jian Yu Assignee: Jian Yu
Resolution: Fixed Votes: 0
Labels: None

Issue Links:
Related
is related to LU-16233 SUSE 15 SP3 LTSS kernel version 5.3.1... Resolved
is related to LU-16122 kernel update [SLES15 SP3 5.3.18-1503... Resolved
is related to LU-16273 kernel update [SLES15 SP3 5.3.18-1503... Resolved
Rank (Obsolete): 9223372036854775807

 Description   

The SUSE Linux Enterprise 15 SP3 kernel was updated receive various
security and bugfixes.

The following security bugs were fixed:

  • CVE-2022-39190: Fixed an issue that was discovered in
    net/netfilter/nf_tables_api.c and could cause a denial of service upon
    binding to an already bound chain (bnc#1203117).
  • CVE-2022-39188: Fixed race condition in include/asm-generic/tlb.h where
    a device driver can free a page while it still has stale TLB entries
    (bnc#1203107).
  • CVE-2022-36879: Fixed an issue in xfrm_expand_policies in
    net/xfrm/xfrm_policy.c where a refcount could be dropped twice
    (bnc#1201948).
  • CVE-2022-3028: Fixed race condition that was found in the IP framework
    for transforming packets (XFRM subsystem) (bnc#1202898).
  • CVE-2022-2977: Fixed reference counting for struct tpm_chip
    (bsc#1202672).
  • CVE-2022-2905: Fixed tnum_range usage on array range checking for poke
    descriptors (bsc#1202564, bsc#1202860).
  • CVE-2022-2663: Fixed an issue that was found in nf_conntrack_irc where
    the message handling could be confused and incorrectly matches the
    message (bnc#1202097).
  • CVE-2022-26373: Fixed non-transparent sharing of return predictor
    targets between contexts in some Intel Processors (bnc#1201726).
  • CVE-2022-2588: Fixed use-after-free in cls_route (bsc#1202096).
  • CVE-2022-20369: Fixed out of bounds write in v4l2_m2m_querybuf of
    v4l2-mem2mem.c (bnc#1202347).
  • CVE-2022-20368: Fixed slab-out-of-bounds access in packet_recvmsg()
    (bsc#1202346).
  • CVE-2021-4203: Fixed use-after-free read flaw that was found in
    sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and
    SO_PEERGROUPS race with listen() (bnc#1194535).
  • CVE-2021-4155: Fixed a data leak flaw that was found in the way
    XFS_IOC_ALLOCSP IOCTL in the XFS filesystem (bnc#1194272).
  • CVE-2020-27784: Fixed a vulnerability that was found in printer_ioctl()
    printer_ioctl() when accessing a deallocated instance (bnc#1202895).
  • CVE-2016-3695: Fixed an issue inside the einj_error_inject function in
    drivers/acpi/apei/einj.c that allowed users to simulate hardware errors
    and consequently cause a denial of service (bnc#1023051).

The following non-security bugs were fixed:
https://lists.suse.com/pipermail/sle-security-updates/2022-September/012229.html

 Comments   
Comment by Gerrit Updater [ 20/Sep/22 ]

"Jian Yu <yujian@whamcloud.com>" uploaded a new patch: https://review.whamcloud.com/48601
Subject: LU-16173 kernel: kernel update SLES15 SP3 [5.3.18-150300.59.93.1]
Project: fs/lustre-release
Branch: master
Current Patch Set: 1
Commit: 6e1ed244805aeaef96bcf6f8827db6604bafa7ae

Comment by Gerrit Updater [ 13/Oct/22 ]

"Jian Yu <yujian@whamcloud.com>" uploaded a new patch: https://review.whamcloud.com/c/fs/lustre-release/+/48859
Subject: LU-16173 kernel: kernel update SLES15 SP3 [5.3.18-150300.59.93.1]
Project: fs/lustre-release
Branch: b2_15
Current Patch Set: 1
Commit: 8b084b991149437147386cf442a8ab4cf09c3838

Comment by Gerrit Updater [ 25/Oct/22 ]

"Oleg Drokin <green@whamcloud.com>" merged in patch https://review.whamcloud.com/c/fs/lustre-release/+/48601/
Subject: LU-16173 kernel: kernel update SLES15 SP3 [5.3.18-150300.59.93.1]
Project: fs/lustre-release
Branch: master
Current Patch Set:
Commit: c3467db7e7d0652c09bdcef26e2b708ab51cba9e

Comment by Peter Jones [ 25/Oct/22 ]

Landed for 2.16

Comment by Gerrit Updater [ 26/Oct/22 ]

"Oleg Drokin <green@whamcloud.com>" merged in patch https://review.whamcloud.com/c/fs/lustre-release/+/48859/
Subject: LU-16173 kernel: kernel update SLES15 SP3 [5.3.18-150300.59.93.1]
Project: fs/lustre-release
Branch: b2_15
Current Patch Set:
Commit: c24c5460cce197c97f49236a46a423e681008e3c

Generated at Sat Feb 10 03:24:40 UTC 2024 using Jira 9.4.14#940014-sha1:734e6822bbf0d45eff9af51f82432957f73aa32c.