openEuler 20.03 LTS SP4 update for kernel



Risk Medium
Patch available YES
Number of vulnerabilities 5
CVE-ID CVE-2022-21546
CVE-2022-49870
CVE-2023-53051
CVE-2025-37834
CVE-2025-37995
CWE-ID CWE-119
CWE-125
CWE-667
CWE-416
CWE-388
Exploitation vector Network
Public exploit N/A
Vulnerable software
 openEuler
Operating systems & Components / Operating system

python3-perf-debuginfo
Operating systems & Components / Operating system package or component

python3-perf
Operating systems & Components / Operating system package or component

python2-perf-debuginfo
Operating systems & Components / Operating system package or component

python2-perf
Operating systems & Components / Operating system package or component

perf-debuginfo
Operating systems & Components / Operating system package or component

perf
Operating systems & Components / Operating system package or component

kernel-tools-devel
Operating systems & Components / Operating system package or component

kernel-tools-debuginfo
Operating systems & Components / Operating system package or component

kernel-tools
Operating systems & Components / Operating system package or component

kernel-source
Operating systems & Components / Operating system package or component

kernel-devel
Operating systems & Components / Operating system package or component

kernel-debugsource
Operating systems & Components / Operating system package or component

kernel-debuginfo
Operating systems & Components / Operating system package or component

bpftool-debuginfo
Operating systems & Components / Operating system package or component

bpftool
Operating systems & Components / Operating system package or component

kernel
Operating systems & Components / Operating system package or component

Vendor openEuler

Security Bulletin

This security bulletin contains information about 5 vulnerabilities.

1) Buffer overflow

EUVDB-ID: #VU68553

Risk: Medium

CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-21546

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the scsi subsystem within the OS kernel. A remote attacker can create a specially crafted file, trick the victim into opening it, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP4

python3-perf-debuginfo: before 4.19.90-2506.2.0.0331

python3-perf: before 4.19.90-2506.2.0.0331

python2-perf-debuginfo: before 4.19.90-2506.2.0.0331

python2-perf: before 4.19.90-2506.2.0.0331

perf-debuginfo: before 4.19.90-2506.2.0.0331

perf: before 4.19.90-2506.2.0.0331

kernel-tools-devel: before 4.19.90-2506.2.0.0331

kernel-tools-debuginfo: before 4.19.90-2506.2.0.0331

kernel-tools: before 4.19.90-2506.2.0.0331

kernel-source: before 4.19.90-2506.2.0.0331

kernel-devel: before 4.19.90-2506.2.0.0331

kernel-debugsource: before 4.19.90-2506.2.0.0331

kernel-debuginfo: before 4.19.90-2506.2.0.0331

bpftool-debuginfo: before 4.19.90-2506.2.0.0331

bpftool: before 4.19.90-2506.2.0.0331

kernel: before 4.19.90-2506.2.0.0331

CPE2.3 External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1626


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Out-of-bounds read

EUVDB-ID: #VU108251

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49870

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the include/uapi/linux/capability.h. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP4

python3-perf-debuginfo: before 4.19.90-2506.2.0.0331

python3-perf: before 4.19.90-2506.2.0.0331

python2-perf-debuginfo: before 4.19.90-2506.2.0.0331

python2-perf: before 4.19.90-2506.2.0.0331

perf-debuginfo: before 4.19.90-2506.2.0.0331

perf: before 4.19.90-2506.2.0.0331

kernel-tools-devel: before 4.19.90-2506.2.0.0331

kernel-tools-debuginfo: before 4.19.90-2506.2.0.0331

kernel-tools: before 4.19.90-2506.2.0.0331

kernel-source: before 4.19.90-2506.2.0.0331

kernel-devel: before 4.19.90-2506.2.0.0331

kernel-debugsource: before 4.19.90-2506.2.0.0331

kernel-debuginfo: before 4.19.90-2506.2.0.0331

bpftool-debuginfo: before 4.19.90-2506.2.0.0331

bpftool: before 4.19.90-2506.2.0.0331

kernel: before 4.19.90-2506.2.0.0331

CPE2.3 External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1626


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Improper locking

EUVDB-ID: #VU108471

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-53051

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the crypt_io_from_node() function in drivers/md/dm-crypt.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP4

python3-perf-debuginfo: before 4.19.90-2506.2.0.0331

python3-perf: before 4.19.90-2506.2.0.0331

python2-perf-debuginfo: before 4.19.90-2506.2.0.0331

python2-perf: before 4.19.90-2506.2.0.0331

perf-debuginfo: before 4.19.90-2506.2.0.0331

perf: before 4.19.90-2506.2.0.0331

kernel-tools-devel: before 4.19.90-2506.2.0.0331

kernel-tools-debuginfo: before 4.19.90-2506.2.0.0331

kernel-tools: before 4.19.90-2506.2.0.0331

kernel-source: before 4.19.90-2506.2.0.0331

kernel-devel: before 4.19.90-2506.2.0.0331

kernel-debugsource: before 4.19.90-2506.2.0.0331

kernel-debuginfo: before 4.19.90-2506.2.0.0331

bpftool-debuginfo: before 4.19.90-2506.2.0.0331

bpftool: before 4.19.90-2506.2.0.0331

kernel: before 4.19.90-2506.2.0.0331

CPE2.3 External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1626


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Use-after-free

EUVDB-ID: #VU108790

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-37834

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the mm/vmscan.c. A local user can escalate privileges on the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP4

python3-perf-debuginfo: before 4.19.90-2506.2.0.0331

python3-perf: before 4.19.90-2506.2.0.0331

python2-perf-debuginfo: before 4.19.90-2506.2.0.0331

python2-perf: before 4.19.90-2506.2.0.0331

perf-debuginfo: before 4.19.90-2506.2.0.0331

perf: before 4.19.90-2506.2.0.0331

kernel-tools-devel: before 4.19.90-2506.2.0.0331

kernel-tools-debuginfo: before 4.19.90-2506.2.0.0331

kernel-tools: before 4.19.90-2506.2.0.0331

kernel-source: before 4.19.90-2506.2.0.0331

kernel-devel: before 4.19.90-2506.2.0.0331

kernel-debugsource: before 4.19.90-2506.2.0.0331

kernel-debuginfo: before 4.19.90-2506.2.0.0331

bpftool-debuginfo: before 4.19.90-2506.2.0.0331

bpftool: before 4.19.90-2506.2.0.0331

kernel: before 4.19.90-2506.2.0.0331

CPE2.3 External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1626


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Improper error handling

EUVDB-ID: #VU109956

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2025-37995

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the module_kobj_release() function in kernel/params.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP4

python3-perf-debuginfo: before 4.19.90-2506.2.0.0331

python3-perf: before 4.19.90-2506.2.0.0331

python2-perf-debuginfo: before 4.19.90-2506.2.0.0331

python2-perf: before 4.19.90-2506.2.0.0331

perf-debuginfo: before 4.19.90-2506.2.0.0331

perf: before 4.19.90-2506.2.0.0331

kernel-tools-devel: before 4.19.90-2506.2.0.0331

kernel-tools-debuginfo: before 4.19.90-2506.2.0.0331

kernel-tools: before 4.19.90-2506.2.0.0331

kernel-source: before 4.19.90-2506.2.0.0331

kernel-devel: before 4.19.90-2506.2.0.0331

kernel-debugsource: before 4.19.90-2506.2.0.0331

kernel-debuginfo: before 4.19.90-2506.2.0.0331

bpftool-debuginfo: before 4.19.90-2506.2.0.0331

bpftool: before 4.19.90-2506.2.0.0331

kernel: before 4.19.90-2506.2.0.0331

CPE2.3 External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1626


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###