Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP4) SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2022:2446-1 Final 1 1 2022-07-20T02:04:53Z current 2022-07-20T02:04:53Z 2022-07-20T02:04:53Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP4) This update for the Linux Kernel 4.12.14-95_80 fixes several issues. The following security issues were fixed: - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). - CVE-2022-21499: Reinforced the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb (bsc#1199426). - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2022-2446,SUSE-SLE-Live-Patching-12-SP4-2022-2446 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2022/suse-su-20222446-1/ Link for SUSE-SU-2022:2446-1 https://lists.suse.com/pipermail/sle-security-updates/2022-July/011600.html E-Mail link for SUSE-SU-2022:2446-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1199697 SUSE Bug 1199697 https://bugzilla.suse.com/1200059 SUSE Bug 1200059 https://bugzilla.suse.com/1200608 SUSE Bug 1200608 https://www.suse.com/security/cve/CVE-2022-1729/ SUSE CVE CVE-2022-1729 page https://www.suse.com/security/cve/CVE-2022-20154/ SUSE CVE CVE-2022-20154 page https://www.suse.com/security/cve/CVE-2022-21499/ SUSE CVE CVE-2022-21499 page SUSE Linux Enterprise Live Patching 12 SP4 kgraft-patch-4_12_14-95_80-default-16-2.3 kgraft-patch-4_12_14-95_80-default-16-2.3 as a component of SUSE Linux Enterprise Live Patching 12 SP4 A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc. CVE-2022-1729 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_80-default-16-2.3 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20222446-1/ https://www.suse.com/security/cve/CVE-2022-1729.html CVE-2022-1729 https://bugzilla.suse.com/1199507 SUSE Bug 1199507 https://bugzilla.suse.com/1199697 SUSE Bug 1199697 https://bugzilla.suse.com/1201832 SUSE Bug 1201832 In lock_sock_nested of sock.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-174846563References: Upstream kernel CVE-2022-20154 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_80-default-16-2.3 important 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20222446-1/ https://www.suse.com/security/cve/CVE-2022-20154.html CVE-2022-20154 https://bugzilla.suse.com/1200599 SUSE Bug 1200599 https://bugzilla.suse.com/1200608 SUSE Bug 1200608 https://bugzilla.suse.com/1224298 SUSE Bug 1224298 https://bugzilla.suse.com/1224878 SUSE Bug 1224878 KGDB and KDB allow read and write access to kernel memory, and thus should be restricted during lockdown. An attacker with access to a serial port could trigger the debugger so it is important that the debugger respect the lockdown mode when/if it is triggered. CVSS 3.1 Base Score 6.7 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H). CVE-2022-21499 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_80-default-16-2.3 important 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20222446-1/ https://www.suse.com/security/cve/CVE-2022-21499.html CVE-2022-21499 https://bugzilla.suse.com/1199426 SUSE Bug 1199426 https://bugzilla.suse.com/1200059 SUSE Bug 1200059 https://bugzilla.suse.com/1203034 SUSE Bug 1203034 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 https://bugzilla.suse.com/1212315 SUSE Bug 1212315