Linux Kernel Multiple Vulnerabilities

Impact

• Denial of Service
• Elevation of Privilege
• Remote Code Execution
• Information Disclosure
• Data Manipulation

System / Technologies affected

• SUSE Linux Enterprise High Performance Computing 15-SP4
• SUSE Linux Enterprise Module for Public Cloud 15-SP4
• SUSE Linux Enterprise Server 12-SP5
• SUSE Linux Enterprise Server 15-SP4
• SUSE Linux Enterprise Server for SAP Applications 15-SP4
• SUSE Manager Proxy 4.3
• SUSE Manager Retail Branch Server 4.3
• SUSE Manager Server 4.3
• openSUSE Leap 15.4
• Ubuntu 22.04 LTS

Solutions

Before installation of the software, please visit the vendor web-site for more details.

For SUSE

Apply fixes issued by the vendor:

• https://www.suse.com/support/update/announcement/2022/suse-su-20223282-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20223288-1

For Ubuntu

Apply fixes issued by the vendor:

• https://ubuntu.com/security/notices/USN-5616-1

Vulnerability Identifier

• CVE-2016-3695
• CVE-2020-36516
• CVE-2021-4037
• CVE-2021-4203
• CVE-2021-33061
• CVE-2021-33135
• CVE-2022-1012
• CVE-2022-1184
• CVE-2022-1729
• CVE-2022-1852
• CVE-2022-1943
• CVE-2022-1973
• CVE-2022-2503
• CVE-2022-2585
• CVE-2022-2588
• CVE-2022-2639
• CVE-2022-2663
• CVE-2022-2873
• CVE-2022-2905
• CVE-2022-2938
• CVE-2022-2959
• CVE-2022-2977
• CVE-2022-3028
• CVE-2022-3078
• CVE-2022-20368
• CVE-2022-20369
• CVE-2022-21385
• CVE-2022-26373
• CVE-2022-28356
• CVE-2022-28693
• CVE-2022-29581
• CVE-2022-32296
• CVE-2022-36879
• CVE-2022-36946
• CVE-2022-39188
• CVE-2022-39190

Source

• AusCERT
• Ubuntu
• SUSE

Related Link

• https://www.auscert.org.au/bulletins/ESB-2022.4631
• https://www.auscert.org.au/bulletins/ESB-2022.4626
• https://www.auscert.org.au/bulletins/ESB-2022.4623
• https://ubuntu.com/security/notices/USN-5616-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20223282-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20223288-1