openEuler update for kernel



Published: 2022-12-24
Risk Medium
Patch available YES
Number of vulnerabilities 6
CVE-ID CVE-2022-20566
CVE-2022-3107
CVE-2022-3643
CVE-2022-3903
CVE-2022-42328
CVE-2022-42329
CWE-ID CWE-416
CWE-476
CWE-20
CWE-399
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		openEuler
Operating systems & Components / Operating system

kernel-tools-devel
Operating systems & Components / Operating system package or component

kernel-tools-debuginfo
Operating systems & Components / Operating system package or component

python3-perf-debuginfo
Operating systems & Components / Operating system package or component

python2-perf
Operating systems & Components / Operating system package or component

kernel-tools
Operating systems & Components / Operating system package or component

kernel-devel
Operating systems & Components / Operating system package or component

perf
Operating systems & Components / Operating system package or component

python2-perf-debuginfo
Operating systems & Components / Operating system package or component

python3-perf
Operating systems & Components / Operating system package or component

bpftool
Operating systems & Components / Operating system package or component

kernel-debugsource
Operating systems & Components / Operating system package or component

kernel-source
Operating systems & Components / Operating system package or component

perf-debuginfo
Operating systems & Components / Operating system package or component

bpftool-debuginfo
Operating systems & Components / Operating system package or component

kernel-debuginfo
Operating systems & Components / Operating system package or component

kernel
Operating systems & Components / Operating system package or component

Vendor openEuler

Security Bulletin

This security bulletin contains information about 6 vulnerabilities.

1) Use-after-free

EUVDB-ID: #VU72526

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-20566

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the l2cap_chan_put() function in Bluetooth L2CAP implementation. A local application can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 20.03 LTS SP3

kernel-tools-devel: before 4.19.90-2212.3.0.0182

kernel-tools-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf-debuginfo: before 4.19.90-2212.3.0.0182

python2-perf: before 4.19.90-2212.3.0.0182

kernel-tools: before 4.19.90-2212.3.0.0182

kernel-devel: before 4.19.90-2212.3.0.0182

perf: before 4.19.90-2212.3.0.0182

python2-perf-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf: before 4.19.90-2212.3.0.0182

bpftool: before 4.19.90-2212.3.0.0182

kernel-debugsource: before 4.19.90-2212.3.0.0182

kernel-source: before 4.19.90-2212.3.0.0182

perf-debuginfo: before 4.19.90-2212.3.0.0182

bpftool-debuginfo: before 4.19.90-2212.3.0.0182

kernel-debuginfo: before 4.19.90-2212.3.0.0182

kernel: before 4.19.90-2212.3.0.0182

External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2147


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) NULL pointer dereference

EUVDB-ID: #VU71538

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-3107

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the netvsc_get_ethtool_stats() function in drivers/net/hyperv/netvsc_drv.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 20.03 LTS SP3

kernel-tools-devel: before 4.19.90-2212.3.0.0182

kernel-tools-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf-debuginfo: before 4.19.90-2212.3.0.0182

python2-perf: before 4.19.90-2212.3.0.0182

kernel-tools: before 4.19.90-2212.3.0.0182

kernel-devel: before 4.19.90-2212.3.0.0182

perf: before 4.19.90-2212.3.0.0182

python2-perf-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf: before 4.19.90-2212.3.0.0182

bpftool: before 4.19.90-2212.3.0.0182

kernel-debugsource: before 4.19.90-2212.3.0.0182

kernel-source: before 4.19.90-2212.3.0.0182

perf-debuginfo: before 4.19.90-2212.3.0.0182

bpftool-debuginfo: before 4.19.90-2212.3.0.0182

kernel-debuginfo: before 4.19.90-2212.3.0.0182

kernel: before 4.19.90-2212.3.0.0182

External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2147


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Input validation error

EUVDB-ID: #VU70468

Risk: Medium

CVSSv3.1: 5.9 [CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-3643

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of network packets. An attacker with access to the guest OS can trigger the related physical NIC on the host to reset, abort, or crash by sending certain kinds of packets.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 20.03 LTS SP3

kernel-tools-devel: before 4.19.90-2212.3.0.0182

kernel-tools-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf-debuginfo: before 4.19.90-2212.3.0.0182

python2-perf: before 4.19.90-2212.3.0.0182

kernel-tools: before 4.19.90-2212.3.0.0182

kernel-devel: before 4.19.90-2212.3.0.0182

perf: before 4.19.90-2212.3.0.0182

python2-perf-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf: before 4.19.90-2212.3.0.0182

bpftool: before 4.19.90-2212.3.0.0182

kernel-debugsource: before 4.19.90-2212.3.0.0182

kernel-source: before 4.19.90-2212.3.0.0182

perf-debuginfo: before 4.19.90-2212.3.0.0182

bpftool-debuginfo: before 4.19.90-2212.3.0.0182

kernel-debuginfo: before 4.19.90-2212.3.0.0182

kernel: before 4.19.90-2212.3.0.0182

External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2147


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Resource management error

EUVDB-ID: #VU70465

Risk: Low

CVSSv3.1: 4 [CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-3903

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to an incorrect read request flaw in the Infrared Transceiver USB driver in Linux kernel. An attacker with physical access to the system can starve system resources and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 20.03 LTS SP3

kernel-tools-devel: before 4.19.90-2212.3.0.0182

kernel-tools-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf-debuginfo: before 4.19.90-2212.3.0.0182

python2-perf: before 4.19.90-2212.3.0.0182

kernel-tools: before 4.19.90-2212.3.0.0182

kernel-devel: before 4.19.90-2212.3.0.0182

perf: before 4.19.90-2212.3.0.0182

python2-perf-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf: before 4.19.90-2212.3.0.0182

bpftool: before 4.19.90-2212.3.0.0182

kernel-debugsource: before 4.19.90-2212.3.0.0182

kernel-source: before 4.19.90-2212.3.0.0182

perf-debuginfo: before 4.19.90-2212.3.0.0182

bpftool-debuginfo: before 4.19.90-2212.3.0.0182

kernel-debuginfo: before 4.19.90-2212.3.0.0182

kernel: before 4.19.90-2212.3.0.0182

External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2147


Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Resource management error

EUVDB-ID: #VU70469

Risk: Medium

CVSSv3.1: 6.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-42328

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources. An attacker with access to the guest OS can trigger deadlock in Linux netback driver and perform a denial of service (DoS) attack of the host via the paravirtualized network interface.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 20.03 LTS SP3

kernel-tools-devel: before 4.19.90-2212.3.0.0182

kernel-tools-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf-debuginfo: before 4.19.90-2212.3.0.0182

python2-perf: before 4.19.90-2212.3.0.0182

kernel-tools: before 4.19.90-2212.3.0.0182

kernel-devel: before 4.19.90-2212.3.0.0182

perf: before 4.19.90-2212.3.0.0182

python2-perf-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf: before 4.19.90-2212.3.0.0182

bpftool: before 4.19.90-2212.3.0.0182

kernel-debugsource: before 4.19.90-2212.3.0.0182

kernel-source: before 4.19.90-2212.3.0.0182

perf-debuginfo: before 4.19.90-2212.3.0.0182

bpftool-debuginfo: before 4.19.90-2212.3.0.0182

kernel-debuginfo: before 4.19.90-2212.3.0.0182

kernel: before 4.19.90-2212.3.0.0182

External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2147


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Resource management error

EUVDB-ID: #VU70470

Risk: Medium

CVSSv3.1: 6.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-42329

CWE-ID: CWE-399 - Resource Management Errors

Exploit availability: No

Description

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper management of internal resources. An attacker with access to the guest OS can trigger deadlock in Linux netback driver and perform a denial of service (DoS) attack of the host via the paravirtualized network interface.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1 - 20.03 LTS SP3

kernel-tools-devel: before 4.19.90-2212.3.0.0182

kernel-tools-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf-debuginfo: before 4.19.90-2212.3.0.0182

python2-perf: before 4.19.90-2212.3.0.0182

kernel-tools: before 4.19.90-2212.3.0.0182

kernel-devel: before 4.19.90-2212.3.0.0182

perf: before 4.19.90-2212.3.0.0182

python2-perf-debuginfo: before 4.19.90-2212.3.0.0182

python3-perf: before 4.19.90-2212.3.0.0182

bpftool: before 4.19.90-2212.3.0.0182

kernel-debugsource: before 4.19.90-2212.3.0.0182

kernel-source: before 4.19.90-2212.3.0.0182

perf-debuginfo: before 4.19.90-2212.3.0.0182

bpftool-debuginfo: before 4.19.90-2212.3.0.0182

kernel-debuginfo: before 4.19.90-2212.3.0.0182

kernel: before 4.19.90-2212.3.0.0182

External links

http://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-2147


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###