{"id":"MGASA-2022-0095","summary":"Updated kernel-linus packages fix security vulnerabilities","details":"This kernel-linus update is based on upstream 5.15.26 and fixes at least\nthe following security issues:\n\nA vulnerability in the Linux kernel since version 5.8 due to uninitialized\nvariables. It enables anybody to write arbitrary data to arbitrary files,\neven if the file is O_RDONLY, immutable or on a MS_RDONLY filesystem.\nIt can be used to inject code into arbitrary processes (CVE-2022-0847).\n\nAn issue was discovered in drivers/usb/gadget/composite.c in the Linux\nkernel before 5.16.10. The USB Gadget subsystem lacks certain validation\nof interface OS descriptor requests (ones with a large array index and\nones associated with NULL function pointer retrieval). Memory corruption\nmight occur (CVE-2022-25258).\n\nAn issue was discovered in drivers/usb/gadget/function/rndis.c in the\nLinux kernel before 5.16.10. The RNDIS USB gadget lacks validation of\nthe size of the RNDIS_MSG_SET command. Attackers can obtain sensitive\ninformation from kernel memory (CVE-2022-25375).\n\nnet/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10\nallows local users to gain privileges because of a heap out-of-bounds\nwrite. This is related to nf_tables_offload (CVE-2022-25636).\n\nFor other upstream fixes, see the referenced changelogs.\n","modified":"2026-02-04T04:39:14.703031Z","published":"2022-03-09T17:03:00Z","related":["CVE-2022-0847","CVE-2022-25258","CVE-2022-25375","CVE-2022-25636"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0095.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30139"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.24"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.25"},{"type":"REPORT","url":"https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.26"}],"affected":[{"package":{"name":"kernel-linus","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/kernel-linus?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.15.26-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0095.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}