openEuler 20.03 LTS SP1 update for kernel

Published: 2022-08-26 | Updated: 2024-03-20

Risk	Low
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2022-26373 CVE-2022-2588
CWE-ID	CWE-264 CWE-415
Exploitation vector	Local
Public exploit	Vulnerability #2 is being exploited in the wild.
Vulnerable software	openEuler Operating systems & Components / Operating system python2-perf Operating systems & Components / Operating system package or component kernel-debuginfo Operating systems & Components / Operating system package or component kernel-tools Operating systems & Components / Operating system package or component python3-perf-debuginfo Operating systems & Components / Operating system package or component kernel-tools-devel Operating systems & Components / Operating system package or component perf-debuginfo Operating systems & Components / Operating system package or component kernel-debugsource Operating systems & Components / Operating system package or component python2-perf-debuginfo Operating systems & Components / Operating system package or component kernel-tools-debuginfo Operating systems & Components / Operating system package or component kernel-source Operating systems & Components / Operating system package or component bpftool Operating systems & Components / Operating system package or component bpftool-debuginfo Operating systems & Components / Operating system package or component kernel-devel Operating systems & Components / Operating system package or component python3-perf Operating systems & Components / Operating system package or component perf Operating systems & Components / Operating system package or component kernel Operating systems & Components / Operating system package or component
Vendor	openEuler

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Security restrictions bypass

EUVDB-ID: #VU66549

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-26373

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to non-transparent sharing of return predictor targets between contexts in Intel CPU processors. A local user can bypass the expected architecture isolation between contexts and gain access to sensitive information on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1

python2-perf: before 4.19.90-2208.5.0.0164

kernel-debuginfo: before 4.19.90-2208.5.0.0164

kernel-tools: before 4.19.90-2208.5.0.0164

python3-perf-debuginfo: before 4.19.90-2208.5.0.0164

kernel-tools-devel: before 4.19.90-2208.5.0.0164

perf-debuginfo: before 4.19.90-2208.5.0.0164

kernel-debugsource: before 4.19.90-2208.5.0.0164

python2-perf-debuginfo: before 4.19.90-2208.5.0.0164

kernel-tools-debuginfo: before 4.19.90-2208.5.0.0164

kernel-source: before 4.19.90-2208.5.0.0164

bpftool: before 4.19.90-2208.5.0.0164

bpftool-debuginfo: before 4.19.90-2208.5.0.0164

kernel-devel: before 4.19.90-2208.5.0.0164

python3-perf: before 4.19.90-2208.5.0.0164

perf: before 4.19.90-2208.5.0.0164

kernel: before 4.19.90-2208.5.0.0164

CPE2.3

External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1864

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Double Free

EUVDB-ID: #VU66397