Whamcloud Community JIRA https://jira.whamcloud.com This file is an XML representation of an issue en-us 9.4.14 940014 05-12-2023 [LU-15569] kernel update [SLES15 SP3 5.3.18-150300.59.49.1] https://jira.whamcloud.com/browse/LU-15569 Lustre <p> The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various<br/> security and bugfixes.</p> <p> The following security bugs were fixed:</p> <ul class="alternate" type="square"> <li>CVE-2022-0435: Fixed remote stack overflow in net/tipc module that<br/> validate domain record count on input (bsc#1195254).</li> <li>CVE-2022-0330: Fixed flush TLBs before releasing backing store<br/> (bsc#1194880).</li> <li>CVE-2022-0286: Fixed null pointer dereference in bond_ipsec_add_sa()<br/> that may have lead to local denial of service (bnc#1195371).</li> <li>CVE-2022-22942: Fixed stale file descriptors on failed usercopy<br/> (bsc#1195065).</li> <li>CVE-2021-45095: Fixed refcount leak in pep_sock_accept in<br/> net/phonet/pep.c (bnc#1193867).</li> <li>CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/tee_shm.c<br/> in the TEE subsystem, that could have occured because of a race<br/> condition in tee_shm_get_from_id during an attempt to free a shared<br/> memory object (bnc#1193767).</li> <li>CVE-2021-39685: Fixed USB gadget buffer overflow caused by too large<br/> endpoint 0 requests (bsc#1193802).</li> <li>CVE-2021-39657: Fixed out of bounds read due to a missing bounds check<br/> in ufshcd_eh_device_reset_handler of ufshcd.c. This could lead to local<br/> information disclosure with System execution privileges needed<br/> (bnc#1193864).</li> <li>CVE-2021-39648: Fixed possible disclosure of kernel heap memory due to a<br/> race condition in gadget_dev_desc_UDC_show of configfs.c. This could<br/> lead to local information disclosure with System execution privileges<br/> needed. User interaction is not needed for exploitation (bnc#1193861).</li> <li>CVE-2021-22600: Fixed double free bug in packet_set_ring() in<br/> net/packet/af_packet.c that could have been exploited by a local user<br/> through crafted syscalls to escalate privileges or deny service<br/> (bnc#1195184).</li> <li>CVE-2020-28097: Fixed out-of-bounds read in vgacon subsystem that<br/> mishandled software scrollback (bnc#1187723).</li> </ul> <p> The following non-security bugs were fixed:<br/> <a href="https://lists.suse.com/pipermail/sle-security-updates/2022-February/010216.html" class="external-link" target="_blank" rel="nofollow noopener">https://lists.suse.com/pipermail/sle-security-updates/2022-February/010216.html</a></p> LU-15569 kernel update [SLES15 SP3 5.3.18-150300.59.49.1] Improvement Minor Resolved Won't Fix Jian Yu Jian Yu Fri, 18 Feb 2022 19:38:56 +0000 Wed, 23 Mar 2022 06:15:25 +0000 Wed, 23 Mar 2022 06:06:33 +0000 0 2 <p>"Jian Yu &lt;yujian@whamcloud.com&gt;" uploaded a new patch: <a href="https://review.whamcloud.com/46559" class="external-link" target="_blank" rel="nofollow noopener">https://review.whamcloud.com/46559</a><br/> Subject: <a href="https://jira.whamcloud.com/browse/LU-15569" title="kernel update [SLES15 SP3 5.3.18-150300.59.49.1]" class="issue-link" data-issue-key="LU-15569"><del>LU-15569</del></a> kernel: kernel update SLES15 SP3 <span class="error">&#91;5.3.18-150300.59.49.1&#93;</span><br/> Project: fs/lustre-release<br/> Branch: master<br/> Current Patch Set: 1<br/> Commit: d1f8f0488b613174acd9e55207e5f63f0db9d354</p> <p>A new version is available in <a href="https://jira.whamcloud.com/browse/LU-15678" title="kernel update [SLES15 SP3 5.3.18-150300.59.54.1]" class="issue-link" data-issue-key="LU-15678"><del>LU-15678</del></a></p> Related LU-15678 Development Rank 1|i02irz: Rank (Obsolete) 9223372036854775807