{"id":"SUSE-SU-2022:14905-1","summary":"Security update for the Linux Kernel","details":"The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes.\n\n\nTransient execution side-channel attacks attacking the Branch History Buffer (BHB),\nnamed 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated.\n\nThe following security bugs were fixed:\n\n- CVE-2022-0001: Fixed Branch History Injection vulnerability (bsc#1191580).\n- CVE-2022-0002: Fixed Intra-Mode Branch Target Injection vulnerability (bsc#1191580).\n- CVE-2020-12770: Fixed sg_remove_request call in a certain failure cases (bsc#1171420).\n- CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079)\n- CVE-2022-0492: Fixed a privilege escalation related to cgroups v1 release_agent feature, which allowed bypassing namespace isolation unexpectedly (bsc#1195543).\n- CVE-2021-45095: Fixed refcount leak in pep_sock_accept in net/phonet/pep.c (bsc#1193867).\n- CVE-2021-4155: Fixed a data leak flaw that allows a local attacker to leak data on the XFS filesystem (bsc#1194272).\n- CVE-2020-27820: Fixed a vulnerability where a use-after-frees in nouveau's postclose() handler could happen if removing device (bsc#1179599).\n- CVE-2019-0136: Fixed an insufficient access control which allow an unauthenticated user to execute a denial of service (bsc#1193157).\n- CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025).\n\nThe following non-security bugs were fixed:\n\n- kprobes: Limit max data_size of the kretprobe instances (bsc#1193669).\n- md: check the return of mddev_find() (bsc#1195109).\n","modified":"2026-02-04T03:04:09.435686Z","published":"2022-03-08T18:05:10Z","related":["CVE-2019-0136","CVE-2020-12770","CVE-2020-27820","CVE-2021-3753","CVE-2021-4155","CVE-2021-45095","CVE-2022-0001","CVE-2022-0002","CVE-2022-0492","CVE-2022-0617"],"upstream":["CVE-2019-0136","CVE-2020-12770","CVE-2020-27820","CVE-2021-3753","CVE-2021-4155","CVE-2021-45095","CVE-2022-0001","CVE-2022-0002","CVE-2022-0492","CVE-2022-0617"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-202214905-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1171420"},{"type":"REPORT","url":"https://bugzilla.suse.com/1179599"},{"type":"REPORT","url":"https://bugzilla.suse.com/1190025"},{"type":"REPORT","url":"https://bugzilla.suse.com/1191580"},{"type":"REPORT","url":"https://bugzilla.suse.com/1193157"},{"type":"REPORT","url":"https://bugzilla.suse.com/1193669"},{"type":"REPORT","url":"https://bugzilla.suse.com/1193867"},{"type":"REPORT","url":"https://bugzilla.suse.com/1194272"},{"type":"REPORT","url":"https://bugzilla.suse.com/1195109"},{"type":"REPORT","url":"https://bugzilla.suse.com/1195543"},{"type":"REPORT","url":"https://bugzilla.suse.com/1195908"},{"type":"REPORT","url":"https://bugzilla.suse.com/1196079"},{"type":"REPORT","url":"https://bugzilla.suse.com/1196612"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-0136"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-12770"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-27820"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-3753"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-4155"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-45095"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0001"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0002"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0492"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0617"}],"affected":[{"package":{"name":"kernel-bigmem","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.135.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-pae-base":"3.0.101-108.135.1","kernel-trace-base":"3.0.101-108.135.1","kernel-ppc64-base":"3.0.101-108.135.1","kernel-ec2-base":"3.0.101-108.135.1","kernel-default-base":"3.0.101-108.135.1","kernel-default-man":"3.0.101-108.135.1","kernel-pae-devel":"3.0.101-108.135.1","kernel-ppc64-devel":"3.0.101-108.135.1","kernel-bigmem":"3.0.101-108.135.1","kernel-xen-devel":"3.0.101-108.135.1","kernel-bigmem-base":"3.0.101-108.135.1","kernel-xen-base":"3.0.101-108.135.1","kernel-source":"3.0.101-108.135.1","kernel-ppc64":"3.0.101-108.135.1","kernel-trace":"3.0.101-108.135.1","kernel-syms":"3.0.101-108.135.1","kernel-trace-devel":"3.0.101-108.135.1","kernel-bigmem-devel":"3.0.101-108.135.1","kernel-ec2":"3.0.101-108.135.1","kernel-pae":"3.0.101-108.135.1","kernel-default":"3.0.101-108.135.1","kernel-ec2-devel":"3.0.101-108.135.1","kernel-default-devel":"3.0.101-108.135.1","kernel-xen":"3.0.101-108.135.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14905-1.json"}},{"package":{"name":"kernel-default","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.135.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-pae-base":"3.0.101-108.135.1","kernel-trace-base":"3.0.101-108.135.1","kernel-ppc64-base":"3.0.101-108.135.1","kernel-ec2-base":"3.0.101-108.135.1","kernel-default-base":"3.0.101-108.135.1","kernel-default-man":"3.0.101-108.135.1","kernel-pae-devel":"3.0.101-108.135.1","kernel-ppc64-devel":"3.0.101-108.135.1","kernel-bigmem":"3.0.101-108.135.1","kernel-xen-devel":"3.0.101-108.135.1","kernel-bigmem-base":"3.0.101-108.135.1","kernel-xen-base":"3.0.101-108.135.1","kernel-source":"3.0.101-108.135.1","kernel-ppc64":"3.0.101-108.135.1","kernel-trace":"3.0.101-108.135.1","kernel-syms":"3.0.101-108.135.1","kernel-trace-devel":"3.0.101-108.135.1","kernel-bigmem-devel":"3.0.101-108.135.1","kernel-ec2":"3.0.101-108.135.1","kernel-pae":"3.0.101-108.135.1","kernel-default":"3.0.101-108.135.1","kernel-ec2-devel":"3.0.101-108.135.1","kernel-default-devel":"3.0.101-108.135.1","kernel-xen":"3.0.101-108.135.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14905-1.json"}},{"package":{"name":"kernel-ec2","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.135.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-pae-base":"3.0.101-108.135.1","kernel-trace-base":"3.0.101-108.135.1","kernel-ppc64-base":"3.0.101-108.135.1","kernel-ec2-base":"3.0.101-108.135.1","kernel-default-base":"3.0.101-108.135.1","kernel-default-man":"3.0.101-108.135.1","kernel-pae-devel":"3.0.101-108.135.1","kernel-ppc64-devel":"3.0.101-108.135.1","kernel-bigmem":"3.0.101-108.135.1","kernel-xen-devel":"3.0.101-108.135.1","kernel-bigmem-base":"3.0.101-108.135.1","kernel-xen-base":"3.0.101-108.135.1","kernel-source":"3.0.101-108.135.1","kernel-ppc64":"3.0.101-108.135.1","kernel-trace":"3.0.101-108.135.1","kernel-syms":"3.0.101-108.135.1","kernel-trace-devel":"3.0.101-108.135.1","kernel-bigmem-devel":"3.0.101-108.135.1","kernel-ec2":"3.0.101-108.135.1","kernel-pae":"3.0.101-108.135.1","kernel-default":"3.0.101-108.135.1","kernel-ec2-devel":"3.0.101-108.135.1","kernel-default-devel":"3.0.101-108.135.1","kernel-xen":"3.0.101-108.135.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14905-1.json"}},{"package":{"name":"kernel-pae","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.135.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-pae-base":"3.0.101-108.135.1","kernel-trace-base":"3.0.101-108.135.1","kernel-ppc64-base":"3.0.101-108.135.1","kernel-ec2-base":"3.0.101-108.135.1","kernel-default-base":"3.0.101-108.135.1","kernel-default-man":"3.0.101-108.135.1","kernel-pae-devel":"3.0.101-108.135.1","kernel-ppc64-devel":"3.0.101-108.135.1","kernel-bigmem":"3.0.101-108.135.1","kernel-xen-devel":"3.0.101-108.135.1","kernel-bigmem-base":"3.0.101-108.135.1","kernel-xen-base":"3.0.101-108.135.1","kernel-source":"3.0.101-108.135.1","kernel-ppc64":"3.0.101-108.135.1","kernel-trace":"3.0.101-108.135.1","kernel-syms":"3.0.101-108.135.1","kernel-trace-devel":"3.0.101-108.135.1","kernel-bigmem-devel":"3.0.101-108.135.1","kernel-ec2":"3.0.101-108.135.1","kernel-pae":"3.0.101-108.135.1","kernel-default":"3.0.101-108.135.1","kernel-ec2-devel":"3.0.101-108.135.1","kernel-default-devel":"3.0.101-108.135.1","kernel-xen":"3.0.101-108.135.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14905-1.json"}},{"package":{"name":"kernel-ppc64","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.135.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-pae-base":"3.0.101-108.135.1","kernel-trace-base":"3.0.101-108.135.1","kernel-ppc64-base":"3.0.101-108.135.1","kernel-ec2-base":"3.0.101-108.135.1","kernel-default-base":"3.0.101-108.135.1","kernel-default-man":"3.0.101-108.135.1","kernel-pae-devel":"3.0.101-108.135.1","kernel-ppc64-devel":"3.0.101-108.135.1","kernel-bigmem":"3.0.101-108.135.1","kernel-xen-devel":"3.0.101-108.135.1","kernel-bigmem-base":"3.0.101-108.135.1","kernel-xen-base":"3.0.101-108.135.1","kernel-source":"3.0.101-108.135.1","kernel-ppc64":"3.0.101-108.135.1","kernel-trace":"3.0.101-108.135.1","kernel-syms":"3.0.101-108.135.1","kernel-trace-devel":"3.0.101-108.135.1","kernel-bigmem-devel":"3.0.101-108.135.1","kernel-ec2":"3.0.101-108.135.1","kernel-pae":"3.0.101-108.135.1","kernel-default":"3.0.101-108.135.1","kernel-ec2-devel":"3.0.101-108.135.1","kernel-default-devel":"3.0.101-108.135.1","kernel-xen":"3.0.101-108.135.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14905-1.json"}},{"package":{"name":"kernel-source","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.135.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-pae-base":"3.0.101-108.135.1","kernel-trace-base":"3.0.101-108.135.1","kernel-ppc64-base":"3.0.101-108.135.1","kernel-ec2-base":"3.0.101-108.135.1","kernel-default-base":"3.0.101-108.135.1","kernel-default-man":"3.0.101-108.135.1","kernel-pae-devel":"3.0.101-108.135.1","kernel-ppc64-devel":"3.0.101-108.135.1","kernel-bigmem":"3.0.101-108.135.1","kernel-xen-devel":"3.0.101-108.135.1","kernel-bigmem-base":"3.0.101-108.135.1","kernel-xen-base":"3.0.101-108.135.1","kernel-source":"3.0.101-108.135.1","kernel-ppc64":"3.0.101-108.135.1","kernel-trace":"3.0.101-108.135.1","kernel-syms":"3.0.101-108.135.1","kernel-trace-devel":"3.0.101-108.135.1","kernel-bigmem-devel":"3.0.101-108.135.1","kernel-ec2":"3.0.101-108.135.1","kernel-pae":"3.0.101-108.135.1","kernel-default":"3.0.101-108.135.1","kernel-ec2-devel":"3.0.101-108.135.1","kernel-default-devel":"3.0.101-108.135.1","kernel-xen":"3.0.101-108.135.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14905-1.json"}},{"package":{"name":"kernel-syms","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.135.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-pae-base":"3.0.101-108.135.1","kernel-trace-base":"3.0.101-108.135.1","kernel-ppc64-base":"3.0.101-108.135.1","kernel-ec2-base":"3.0.101-108.135.1","kernel-default-base":"3.0.101-108.135.1","kernel-default-man":"3.0.101-108.135.1","kernel-pae-devel":"3.0.101-108.135.1","kernel-ppc64-devel":"3.0.101-108.135.1","kernel-bigmem":"3.0.101-108.135.1","kernel-xen-devel":"3.0.101-108.135.1","kernel-bigmem-base":"3.0.101-108.135.1","kernel-xen-base":"3.0.101-108.135.1","kernel-source":"3.0.101-108.135.1","kernel-ppc64":"3.0.101-108.135.1","kernel-trace":"3.0.101-108.135.1","kernel-syms":"3.0.101-108.135.1","kernel-trace-devel":"3.0.101-108.135.1","kernel-bigmem-devel":"3.0.101-108.135.1","kernel-ec2":"3.0.101-108.135.1","kernel-pae":"3.0.101-108.135.1","kernel-default":"3.0.101-108.135.1","kernel-ec2-devel":"3.0.101-108.135.1","kernel-default-devel":"3.0.101-108.135.1","kernel-xen":"3.0.101-108.135.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14905-1.json"}},{"package":{"name":"kernel-trace","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.135.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-pae-base":"3.0.101-108.135.1","kernel-trace-base":"3.0.101-108.135.1","kernel-ppc64-base":"3.0.101-108.135.1","kernel-ec2-base":"3.0.101-108.135.1","kernel-default-base":"3.0.101-108.135.1","kernel-default-man":"3.0.101-108.135.1","kernel-pae-devel":"3.0.101-108.135.1","kernel-ppc64-devel":"3.0.101-108.135.1","kernel-bigmem":"3.0.101-108.135.1","kernel-xen-devel":"3.0.101-108.135.1","kernel-bigmem-base":"3.0.101-108.135.1","kernel-xen-base":"3.0.101-108.135.1","kernel-source":"3.0.101-108.135.1","kernel-ppc64":"3.0.101-108.135.1","kernel-trace":"3.0.101-108.135.1","kernel-syms":"3.0.101-108.135.1","kernel-trace-devel":"3.0.101-108.135.1","kernel-bigmem-devel":"3.0.101-108.135.1","kernel-ec2":"3.0.101-108.135.1","kernel-pae":"3.0.101-108.135.1","kernel-default":"3.0.101-108.135.1","kernel-ec2-devel":"3.0.101-108.135.1","kernel-default-devel":"3.0.101-108.135.1","kernel-xen":"3.0.101-108.135.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14905-1.json"}},{"package":{"name":"kernel-xen","ecosystem":"SUSE:Linux Enterprise Server 11 SP4-LTSS","purl":"pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.101-108.135.1"}]}],"ecosystem_specific":{"binaries":[{"kernel-pae-base":"3.0.101-108.135.1","kernel-trace-base":"3.0.101-108.135.1","kernel-ppc64-base":"3.0.101-108.135.1","kernel-ec2-base":"3.0.101-108.135.1","kernel-default-base":"3.0.101-108.135.1","kernel-default-man":"3.0.101-108.135.1","kernel-pae-devel":"3.0.101-108.135.1","kernel-ppc64-devel":"3.0.101-108.135.1","kernel-bigmem":"3.0.101-108.135.1","kernel-xen-devel":"3.0.101-108.135.1","kernel-bigmem-base":"3.0.101-108.135.1","kernel-xen-base":"3.0.101-108.135.1","kernel-source":"3.0.101-108.135.1","kernel-ppc64":"3.0.101-108.135.1","kernel-trace":"3.0.101-108.135.1","kernel-syms":"3.0.101-108.135.1","kernel-trace-devel":"3.0.101-108.135.1","kernel-bigmem-devel":"3.0.101-108.135.1","kernel-ec2":"3.0.101-108.135.1","kernel-pae":"3.0.101-108.135.1","kernel-default":"3.0.101-108.135.1","kernel-ec2-devel":"3.0.101-108.135.1","kernel-default-devel":"3.0.101-108.135.1","kernel-xen":"3.0.101-108.135.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14905-1.json"}}],"schema_version":"1.7.3"}