Detections
Analytics
SUSE SLED12: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2022:3265-1)
high Nessus Plugin ID 165196
Language:
Synopsis
The remote SUSE host is missing one or more security updates.Description
The remote SUSE Linux SLED12 / SLED_SAP12 / SLES12 / SLES_SAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3265-1 advisory.The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2022-36879: Fixed an issue in xfrm_expand_policies in net/xfrm/xfrm_policy.c where a refcount could be dropped twice (bnc#1201948).
- CVE-2022-3028: Fixed race condition that was found in the IP framework for transforming packets (XFRM subsystem) (bnc#1202898).
- CVE-2022-2977: Fixed reference counting for struct tpm_chip (bsc#1202672).
- CVE-2022-29581: Fixed improper update of reference count vulnerability in net/sched that allowed a local attacker to cause privilege escalation to root (bnc#1199665).
- CVE-2022-2639: Fixed an integer coercion error that was found in the openvswitch kernel module (bnc#1202154).
- CVE-2022-26373: Fixed non-transparent sharing of return predictor targets between contexts in some Intel Processors (bnc#1201726).
- CVE-2022-2588: Fixed use-after-free in cls_route (bsc#1202096).
- CVE-2022-21385: Fixed a flaw in net_rds_alloc_sgs() that allowed unprivileged local users to crash the machine (bnc#1202897).
- CVE-2022-20369: Fixed possible out of bounds write due to improper input validation in v4l2_m2m_querybuf of v4l2-mem2mem.c (bnc#1202347).
- CVE-2022-20368: Fixed slab-out-of-bounds access in packet_recvmsg() (bsc#1202346).
- CVE-2021-4203: Fixed use-after-free read flaw that was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (bnc#1194535).
- CVE-2020-36516: Fixed an issue in the mixed IPID assignment method where an attacker was able to inject data into or terminate a victim's TCP session (bnc#1196616).
Tenable has extracted the preceding description block directly from the SUSE security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected packages.See Also
https://bugzilla.suse.com/1054914
https://bugzilla.suse.com/1065729
https://bugzilla.suse.com/1078216
https://bugzilla.suse.com/1093777
https://bugzilla.suse.com/1094120
https://bugzilla.suse.com/1107937
https://bugzilla.suse.com/1120716
https://bugzilla.suse.com/1141488
https://bugzilla.suse.com/1179310
https://bugzilla.suse.com/1181862
https://bugzilla.suse.com/1189904
https://bugzilla.suse.com/1190397
https://bugzilla.suse.com/1191881
https://bugzilla.suse.com/1194535
https://bugzilla.suse.com/1196616
https://bugzilla.suse.com/1197158
https://bugzilla.suse.com/1198388
https://bugzilla.suse.com/1199617
https://bugzilla.suse.com/1199665
https://bugzilla.suse.com/1201019
https://bugzilla.suse.com/1201264
https://bugzilla.suse.com/1201420
https://bugzilla.suse.com/1201442
https://bugzilla.suse.com/1201610
https://bugzilla.suse.com/1201705
https://bugzilla.suse.com/1201726
https://bugzilla.suse.com/1201948
https://bugzilla.suse.com/1202017
https://bugzilla.suse.com/1202096
https://bugzilla.suse.com/1202154
https://bugzilla.suse.com/1202346
https://bugzilla.suse.com/1202347
https://bugzilla.suse.com/1202393
https://bugzilla.suse.com/1202396
https://bugzilla.suse.com/1202528
https://bugzilla.suse.com/1202577
https://bugzilla.suse.com/1202672
https://bugzilla.suse.com/1202830
https://bugzilla.suse.com/1202897
https://bugzilla.suse.com/1202898
https://bugzilla.suse.com/1203013
https://bugzilla.suse.com/1203098
https://bugzilla.suse.com/1203126
https://www.suse.com/security/cve/CVE-2020-36516
https://www.suse.com/security/cve/CVE-2021-4203
https://www.suse.com/security/cve/CVE-2022-20368
https://www.suse.com/security/cve/CVE-2022-20369
https://www.suse.com/security/cve/CVE-2022-21385
https://www.suse.com/security/cve/CVE-2022-2588
https://www.suse.com/security/cve/CVE-2022-26373
https://www.suse.com/security/cve/CVE-2022-2639
https://www.suse.com/security/cve/CVE-2022-29581
https://www.suse.com/security/cve/CVE-2022-2977
https://www.suse.com/security/cve/CVE-2022-3028
Plugin Details
Severity: High
ID: 165196
File Name: suse_SU-2022-3265-1.nasl
Version: 1.8
Type: Local
Agent: unix
Family: SuSE Local Security Checks
Published: 9/15/2022
Updated: 6/25/2026
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.5
CVSS v2
Risk Factor: High
Base Score: 7.2
Temporal Score: 6.3
Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2022-29581
CVSS v3
Risk Factor: High
Base Score: 7.8
Temporal Score: 7.5
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
CVSS Score Source: CVE-2022-2977
Vulnerability Information
CPE: cpe:/o:novell:suse_linux:12, p-cpe:/a:novell:suse_linux:kernel-default-base, p-cpe:/a:novell:suse_linux:kernel-default-kgraft-devel, p-cpe:/a:novell:suse_linux:kernel-macros, p-cpe:/a:novell:suse_linux:kgraft-patch-4_12_14-122_133-default, p-cpe:/a:novell:suse_linux:kernel-default-devel, p-cpe:/a:novell:suse_linux:cluster-md-kmp-default, p-cpe:/a:novell:suse_linux:gfs2-kmp-default, p-cpe:/a:novell:suse_linux:kernel-default, p-cpe:/a:novell:suse_linux:kernel-devel, p-cpe:/a:novell:suse_linux:kernel-default-extra, p-cpe:/a:novell:suse_linux:kernel-obs-build, p-cpe:/a:novell:suse_linux:kernel-syms, p-cpe:/a:novell:suse_linux:ocfs2-kmp-default, p-cpe:/a:novell:suse_linux:kernel-default-kgraft, p-cpe:/a:novell:suse_linux:dlm-kmp-default, p-cpe:/a:novell:suse_linux:kernel-source, p-cpe:/a:novell:suse_linux:kernel-default-man
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 9/14/2022
Vulnerability Publication Date: 2/26/2022
Exploitable With
Core Impact
Reference Information
CVE: CVE-2020-36516, CVE-2021-4203, CVE-2022-20368, CVE-2022-20369, CVE-2022-21385, CVE-2022-2588, CVE-2022-26373, CVE-2022-2639, CVE-2022-29581, CVE-2022-2977, CVE-2022-3028, CVE-2022-36879
SuSE: SUSE-SU-2022:3265-1