Security update for the Linux Kernel SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2022:2808-1 Final 1 1 2022-08-15T15:05:58Z current 2022-08-15T15:05:58Z 2022-08-15T15:05:58Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635). - CVE-2021-33656: Fixed out of bounds write with ioctl PIO_FONT (bnc#1201636). - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TeleTYpe subsystem (bnc#1198829). The following non-security bugs were fixed: - Add missing recommends of kernel-install-tools to kernel-source-vanilla (bsc#1200442) - cifs: On cifs_reconnect, resolve the hostname again (bsc#1201926). - cifs: Simplify reconnect code when dfs upcall is enabled (bsc#1201926). - cifs: To match file servers, make sure the server hostname matches (bsc#1201926). - cifs: fix memory leak of smb3_fs_context_dup::server_hostname (bsc#1201926). - cifs: fix potential use-after-free in cifs_echo_request() (bsc#1201926). - cifs: set a minimum of 120s for next dns resolution (bsc#1201926). - cifs: use the expiry output of dns_query to schedule next resolution (bsc#1201926). - kernel-binary.spec: Support radio selection for debuginfo. To disable debuginfo on 5.18 kernel a radio selection needs to be switched to a different selection. This requires disabling the currently active option and selecting NONE as debuginfo type. - kvm: emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930). - kvm: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930). - pahole 1.22 required for full BTF features. also recommend pahole for kernel-source to make the kernel buildable with standard config - rpm/*.spec.in: remove backtick usage - rpm/constraints.in: skip SLOW_DISK workers for kernel-source - rpm/kernel-obs-build.spec.in: Also depend on dracut-systemd (bsc#1195775) - rpm/kernel-obs-build.spec.in: add systemd-initrd and terminfo dracut module (bsc#1195775) - rpm/kernel-obs-build.spec.in: use default dracut modules (bsc#1195926, bsc#1198484). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2022-2808,SUSE-OpenStack-Cloud-9-2022-2808,SUSE-OpenStack-Cloud-Crowbar-9-2022-2808,SUSE-SLE-HA-12-SP4-2022-2808,SUSE-SLE-Live-Patching-12-SP4-2022-2808,SUSE-SLE-SAP-12-SP4-2022-2808,SUSE-SLE-SERVER-12-SP4-LTSS-2022-2808 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2022/suse-su-20222808-1/ Link for SUSE-SU-2022:2808-1 https://lists.suse.com/pipermail/sle-security-updates/2022-August/011913.html E-Mail link for SUSE-SU-2022:2808-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1195775 SUSE Bug 1195775 https://bugzilla.suse.com/1195926 SUSE Bug 1195926 https://bugzilla.suse.com/1198484 SUSE Bug 1198484 https://bugzilla.suse.com/1198829 SUSE Bug 1198829 https://bugzilla.suse.com/1200442 SUSE Bug 1200442 https://bugzilla.suse.com/1201050 SUSE Bug 1201050 https://bugzilla.suse.com/1201635 SUSE Bug 1201635 https://bugzilla.suse.com/1201636 SUSE Bug 1201636 https://bugzilla.suse.com/1201926 SUSE Bug 1201926 https://bugzilla.suse.com/1201930 SUSE Bug 1201930 https://www.suse.com/security/cve/CVE-2021-26341/ SUSE CVE CVE-2021-26341 page https://www.suse.com/security/cve/CVE-2021-33655/ SUSE CVE CVE-2021-33655 page https://www.suse.com/security/cve/CVE-2021-33656/ SUSE CVE CVE-2021-33656 page https://www.suse.com/security/cve/CVE-2022-1462/ SUSE CVE CVE-2022-1462 page SUSE Linux Enterprise High Availability Extension 12 SP4 SUSE Linux Enterprise Live Patching 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9 cluster-md-kmp-default-4.12.14-95.105.1 dlm-kmp-default-4.12.14-95.105.1 gfs2-kmp-default-4.12.14-95.105.1 kernel-debug-4.12.14-95.105.1 kernel-debug-base-4.12.14-95.105.1 kernel-debug-devel-4.12.14-95.105.1 kernel-debug-kgraft-devel-4.12.14-95.105.1 kernel-default-4.12.14-95.105.1 kernel-default-base-4.12.14-95.105.1 kernel-default-devel-4.12.14-95.105.1 kernel-default-extra-4.12.14-95.105.1 kernel-default-kgraft-4.12.14-95.105.1 kernel-default-kgraft-devel-4.12.14-95.105.1 kernel-default-man-4.12.14-95.105.1 kernel-devel-4.12.14-95.105.1 kernel-docs-4.12.14-95.105.2 kernel-docs-html-4.12.14-95.105.2 kernel-kvmsmall-4.12.14-95.105.1 kernel-kvmsmall-base-4.12.14-95.105.1 kernel-kvmsmall-devel-4.12.14-95.105.1 kernel-kvmsmall-kgraft-devel-4.12.14-95.105.1 kernel-macros-4.12.14-95.105.1 kernel-obs-build-4.12.14-95.105.1 kernel-obs-qa-4.12.14-95.105.1 kernel-source-4.12.14-95.105.1 kernel-source-vanilla-4.12.14-95.105.1 kernel-syms-4.12.14-95.105.1 kernel-vanilla-4.12.14-95.105.1 kernel-vanilla-base-4.12.14-95.105.1 kernel-vanilla-devel-4.12.14-95.105.1 kernel-vanilla-kgraft-devel-4.12.14-95.105.1 kernel-zfcpdump-4.12.14-95.105.1 kernel-zfcpdump-man-4.12.14-95.105.1 kgraft-patch-4_12_14-95_105-default-1-6.3.1 kselftests-kmp-default-4.12.14-95.105.1 ocfs2-kmp-default-4.12.14-95.105.1 cluster-md-kmp-default-4.12.14-95.105.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP4 dlm-kmp-default-4.12.14-95.105.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP4 gfs2-kmp-default-4.12.14-95.105.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP4 ocfs2-kmp-default-4.12.14-95.105.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP4 kernel-default-kgraft-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Live Patching 12 SP4 kernel-default-kgraft-devel-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Live Patching 12 SP4 kgraft-patch-4_12_14-95_105-default-1-6.3.1 as a component of SUSE Linux Enterprise Live Patching 12 SP4 kernel-default-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default-base-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default-devel-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default-man-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-devel-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-macros-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-source-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-syms-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default-base-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default-devel-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-devel-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-macros-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-source-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-syms-4.12.14-95.105.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud 9 kernel-default-base-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud 9 kernel-default-devel-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud 9 kernel-devel-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud 9 kernel-macros-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud 9 kernel-source-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud 9 kernel-syms-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud 9 kernel-default-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-default-base-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-default-devel-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-devel-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-macros-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-source-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-syms-4.12.14-95.105.1 as a component of SUSE OpenStack Cloud Crowbar 9 Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage. CVE-2021-26341 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_105-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.105.1 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20222808-1/ https://www.suse.com/security/cve/CVE-2021-26341.html CVE-2021-26341 https://bugzilla.suse.com/1191580 SUSE Bug 1191580 https://bugzilla.suse.com/1196901 SUSE Bug 1196901 https://bugzilla.suse.com/1201050 SUSE Bug 1201050 When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds. CVE-2021-33655 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_105-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.105.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20222808-1/ https://www.suse.com/security/cve/CVE-2021-33655.html CVE-2021-33655 https://bugzilla.suse.com/1201635 SUSE Bug 1201635 https://bugzilla.suse.com/1202087 SUSE Bug 1202087 https://bugzilla.suse.com/1205313 SUSE Bug 1205313 https://bugzilla.suse.com/1212291 SUSE Bug 1212291 When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds. CVE-2021-33656 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_105-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.105.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20222808-1/ https://www.suse.com/security/cve/CVE-2021-33656.html CVE-2021-33656 https://bugzilla.suse.com/1201636 SUSE Bug 1201636 https://bugzilla.suse.com/1212286 SUSE Bug 1212286 An out-of-bounds read flaw was found in the Linux kernel's TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flush_to_ldisc function. This flaw allows a local user to crash the system or read unauthorized random data from memory. CVE-2022-1462 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.105.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_105-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.105.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.105.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.105.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.105.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.105.1 moderate 3.3 AV:L/AC:M/Au:N/C:P/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20222808-1/ https://www.suse.com/security/cve/CVE-2022-1462.html CVE-2022-1462 https://bugzilla.suse.com/1198829 SUSE Bug 1198829