https://jira.whamcloud.com This file is an XML representation of an issue en-us 9.4.14 940014 05-12-2023 https://jira.whamcloud.com/browse/LU-15960 Lustre <p> The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various<br/> security and bugfixes.</p> <p> The following security bugs were fixed:</p> <ul class="alternate" type="square"> <li>CVE-2022-28748: Fixed memory lead over the network by ax88179_178a<br/> devices (bsc#1196018).</li> <li>CVE-2022-28356: Fixed a refcount leak bug found in net/llc/af_llc.c<br/> (bnc#1197391).</li> <li>CVE-2022-1516: Fixed null-ptr-deref caused by x25_disconnect<br/> (bsc#1199012).</li> <li>CVE-2022-1419: Fixed a concurrency use-after-free in<br/> vgem_gem_dumb_create (bsc#1198742).</li> <li>CVE-2022-1353: Fixed access controll to kernel memory in the<br/> pfkey_register function in net/key/af_key.c (bnc#1198516).</li> <li>CVE-2022-1280: Fixed a use-after-free vulnerability in drm_lease_held in<br/> drivers/gpu/drm/drm_lease.c (bnc#1197914).</li> <li>CVE-2022-1011: Fixed a use-after-free flaw inside the FUSE filesystem in<br/> the way a user triggers write(). This flaw allowed a local user to gain<br/> unauthorized access to data from the FUSE filesystem, resulting in<br/> privilege escalation (bnc#1197343).</li> <li>CVE-2021-43389: Fixed an array-index-out-of-bounds flaw in the<br/> detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958).</li> <li>CVE-2021-38208: Fixed a denial of service (NULL pointer dereference and<br/> BUG) by making a getsockname call after a certain type of failure of a<br/> bind call (bnc#1187055).</li> <li>CVE-2021-20321: Fixed a race condition accessing file object in the<br/> OverlayFS subsystem in the way users do rename in specific way with<br/> OverlayFS. A local user could have used this flaw to crash the system<br/> (bnc#1191647).</li> <li>CVE-2021-20292: Fixed object validation prior to performing operations<br/> on the object in nouveau_sgdma_create_ttm in Nouveau DRM subsystem<br/> (bnc#1183723).</li> <li>CVE-2019-20811: Fixed issue in rx_queue_add_kobject() and<br/> netdev_queue_add_kobject() in net/core/net-sysfs.c, where a reference<br/> count is mishandled (bnc#1172456).</li> <li>CVE-2018-7755: Fixed an issue in the fd_locked_ioctl function in<br/> drivers/block/floppy.c. The floppy driver will copy a kernel pointer to<br/> user memory in response to the FDGETPRM ioctl. An attacker can send the<br/> FDGETPRM ioctl and use the obtained kernel pointer to discover the<br/> location of kernel code and data and bypass kernel security protections<br/> such as KASLR (bnc#1084513).</li> </ul> <p> The following non-security bugs were fixed:<br/> <a href="https://lists.suse.com/pipermail/sle-security-updates/2022-May/011035.html" class="external-link" target="_blank" rel="nofollow noopener">https://lists.suse.com/pipermail/sle-security-updates/2022-May/011035.html</a></p> LU-15960

kernel update [SLES12 SP5 4.12.14-122.121.2]

Improvement Minor Resolved Won't Fix Jian Yu Jian Yu Sat, 18 Jun 2022 00:15:41 +0000 Thu, 11 Aug 2022 17:53:58 +0000 Thu, 11 Aug 2022 17:53:58 +0000 0 2 <p>A new version is available in <a href="https://jira.whamcloud.com/browse/LU-16093" title="kernel update [SLES12 SP5 4.12.14-122.130.1]" class="issue-link" data-issue-key="LU-16093"><del>LU-16093</del></a>.</p> Related LU-15773 LU-16093 Development Rank 1|i02sif: Rank (Obsolete) 9223372036854775807