Security update for the Linux Kernel (Live Patch 27 for SLE 15) SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2022:3409-1 Final 1 1 2022-09-26T17:04:41Z current 2022-09-26T17:04:41Z 2022-09-26T17:04:41Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel (Live Patch 27 for SLE 15) This update for the Linux Kernel 4.12.14-150_83 fixes several issues. The following security issues were fixed: - CVE-2022-39188: Fixed a race condition between unmap_mapping_range() and munmap() on VM_PFNMAP mappings leads to stale TLB entry (bsc#1203116). - CVE-2022-1652: Fixed a use-after-free in bad_flp_intr (bsc#1200057). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2022-3409,SUSE-SLE-Module-Live-Patching-15-2022-3409,SUSE-SLE-Module-Live-Patching-15-2022-3410 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2022/suse-su-20223409-1/ Link for SUSE-SU-2022:3409-1 https://lists.suse.com/pipermail/sle-security-updates/2022-September/012385.html E-Mail link for SUSE-SU-2022:3409-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1200057 SUSE Bug 1200057 https://bugzilla.suse.com/1203116 SUSE Bug 1203116 https://www.suse.com/security/cve/CVE-2022-1652/ SUSE CVE CVE-2022-1652 page https://www.suse.com/security/cve/CVE-2022-39188/ SUSE CVE CVE-2022-39188 page SUSE Linux Enterprise Live Patching 15 kernel-livepatch-4_12_14-150_78-default-14-150000.2.2 kernel-livepatch-4_12_14-150_83-default-10-150000.2.2 kernel-livepatch-4_12_14-150_78-default-14-150000.2.2 as a component of SUSE Linux Enterprise Live Patching 15 kernel-livepatch-4_12_14-150_83-default-10-150000.2.2 as a component of SUSE Linux Enterprise Live Patching 15 Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function. By executing a specially-crafted program, an attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service condition on the system. CVE-2022-1652 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_78-default-14-150000.2.2 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_83-default-10-150000.2.2 important 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20223409-1/ https://www.suse.com/security/cve/CVE-2022-1652.html CVE-2022-1652 https://bugzilla.suse.com/1199063 SUSE Bug 1199063 https://bugzilla.suse.com/1200057 SUSE Bug 1200057 https://bugzilla.suse.com/1200751 SUSE Bug 1200751 https://bugzilla.suse.com/1201034 SUSE Bug 1201034 https://bugzilla.suse.com/1201832 SUSE Bug 1201832 https://bugzilla.suse.com/1204132 SUSE Bug 1204132 https://bugzilla.suse.com/1212307 SUSE Bug 1212307 An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs. CVE-2022-39188 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_78-default-14-150000.2.2 SUSE Linux Enterprise Live Patching 15:kernel-livepatch-4_12_14-150_83-default-10-150000.2.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20223409-1/ https://www.suse.com/security/cve/CVE-2022-39188.html CVE-2022-39188 https://bugzilla.suse.com/1203107 SUSE Bug 1203107 https://bugzilla.suse.com/1203116 SUSE Bug 1203116 https://bugzilla.suse.com/1205313 SUSE Bug 1205313 https://bugzilla.suse.com/1209225 SUSE Bug 1209225 https://bugzilla.suse.com/1212326 SUSE Bug 1212326