SUSE update for the Linux Kernel (Live Patch 15 for SLE 15 SP3)



Published: 2022-07-04 | Updated: 2023-01-29
Risk Low
Patch available YES
Number of vulnerabilities 5
CVE-ID CVE-2022-1116
CVE-2022-1734
CVE-2022-1966
CVE-2022-1972
CVE-2022-32250
CWE-ID CWE-190
CWE-416
CWE-787
Exploitation vector Local
Public exploit Public exploit code for vulnerability #3 is available.
Public exploit code for vulnerability #4 is available.
Public exploit code for vulnerability #5 is available.
Vulnerable software
Subscribe
SUSE Linux Enterprise Module for Live Patching
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications
Operating systems & Components / Operating system

SUSE Linux Enterprise Server
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing
Operating systems & Components / Operating system

kernel-livepatch-5_3_18-59_40-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-livepatch-SLE15-SP3_Update_7-debugsource
Operating systems & Components / Operating system package or component

kernel-livepatch-SLE15-SP3_Update_6-debugsource
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-59_40-default
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-59_27-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-59_27-default
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-59_24-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-59_24-default
Operating systems & Components / Operating system package or component

kernel-livepatch-5_3_18-150300_59_54-default
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 5 vulnerabilities.

1) Integer overflow

EUVDB-ID: #VU63633

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-1116

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a local user to execute code with elevated privileges.

The vulnerability exists due to integer overflow in the io_uring subsystem in the Linux kernel. A local user can trigger integer overflow, cause a denial of service or execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel (Live Patch 15 for SLE 15 SP3) to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for Live Patching: 15-SP3

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Server: 15-SP3

SUSE Linux Enterprise High Performance Computing: 15-SP3

kernel-livepatch-5_3_18-59_40-default-debuginfo: before 11-150300.2.2

kernel-livepatch-SLE15-SP3_Update_7-debugsource: before 13-150300.2.2

kernel-livepatch-SLE15-SP3_Update_6-debugsource: before 13-150300.2.2

kernel-livepatch-5_3_18-59_40-default: before 11-150300.2.2

kernel-livepatch-5_3_18-59_27-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_27-default: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default: before 13-150300.2.2

kernel-livepatch-5_3_18-150300_59_54-default: before 8-150300.2.2

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20222245-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Use-after-free

EUVDB-ID: #VU64082

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-1734

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to Marvell NFC device driver implementation in the Linux kernel did not properly perform memory cleanup operations in some situations. A local user can trigger use-after-free to escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel (Live Patch 15 for SLE 15 SP3) to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for Live Patching: 15-SP3

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Server: 15-SP3

SUSE Linux Enterprise High Performance Computing: 15-SP3

kernel-livepatch-5_3_18-59_40-default-debuginfo: before 11-150300.2.2

kernel-livepatch-SLE15-SP3_Update_7-debugsource: before 13-150300.2.2

kernel-livepatch-SLE15-SP3_Update_6-debugsource: before 13-150300.2.2

kernel-livepatch-5_3_18-59_40-default: before 11-150300.2.2

kernel-livepatch-5_3_18-59_27-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_27-default: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default: before 13-150300.2.2

kernel-livepatch-5_3_18-150300_59_54-default: before 8-150300.2.2

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20222245-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Use-after-free

EUVDB-ID: #VU64070

Risk: Low

CVSSv3.1: 7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2022-1966

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in the Linux kernel's Netfilter subsystem in net/netfilter/nf_tables_api.c. A local user can trigger use-after-free error to escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel (Live Patch 15 for SLE 15 SP3) to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for Live Patching: 15-SP3

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Server: 15-SP3

SUSE Linux Enterprise High Performance Computing: 15-SP3

kernel-livepatch-5_3_18-59_40-default-debuginfo: before 11-150300.2.2

kernel-livepatch-SLE15-SP3_Update_7-debugsource: before 13-150300.2.2

kernel-livepatch-SLE15-SP3_Update_6-debugsource: before 13-150300.2.2

kernel-livepatch-5_3_18-59_40-default: before 11-150300.2.2

kernel-livepatch-5_3_18-59_27-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_27-default: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default: before 13-150300.2.2

kernel-livepatch-5_3_18-150300_59_54-default: before 8-150300.2.2

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20222245-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

4) Out-of-bounds write

EUVDB-ID: #VU64073

Risk: Low

CVSSv3.1: 7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2022-1972

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error when processing untrusted input in the Linux kernel's netfilter subsystem. A local user can trigger out-of-bounds write to escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel (Live Patch 15 for SLE 15 SP3) to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for Live Patching: 15-SP3

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Server: 15-SP3

SUSE Linux Enterprise High Performance Computing: 15-SP3

kernel-livepatch-5_3_18-59_40-default-debuginfo: before 11-150300.2.2

kernel-livepatch-SLE15-SP3_Update_7-debugsource: before 13-150300.2.2

kernel-livepatch-SLE15-SP3_Update_6-debugsource: before 13-150300.2.2

kernel-livepatch-5_3_18-59_40-default: before 11-150300.2.2

kernel-livepatch-5_3_18-59_27-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_27-default: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default: before 13-150300.2.2

kernel-livepatch-5_3_18-150300_59_54-default: before 8-150300.2.2

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20222245-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

5) Use-after-free

EUVDB-ID: #VU64668

Risk: Low

CVSSv3.1: 7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2022-32250

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free incorrect NFT_STATEFUL_EXPR in net/netfilter/nf_tables_api.c in Linux kernel. A local user with ability to create user/net namespaces can execute arbitrary code with root privileges.

Mitigation

Update the affected package the Linux Kernel (Live Patch 15 for SLE 15 SP3) to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Module for Live Patching: 15-SP3

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Server: 15-SP3

SUSE Linux Enterprise High Performance Computing: 15-SP3

kernel-livepatch-5_3_18-59_40-default-debuginfo: before 11-150300.2.2

kernel-livepatch-SLE15-SP3_Update_7-debugsource: before 13-150300.2.2

kernel-livepatch-SLE15-SP3_Update_6-debugsource: before 13-150300.2.2

kernel-livepatch-5_3_18-59_40-default: before 11-150300.2.2

kernel-livepatch-5_3_18-59_27-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_27-default: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default-debuginfo: before 13-150300.2.2

kernel-livepatch-5_3_18-59_24-default: before 13-150300.2.2

kernel-livepatch-5_3_18-150300_59_54-default: before 8-150300.2.2

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20222245-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.



###SIDEBAR###