The SUSE Linux Enterprise 15 SP3 kernel was updated.
The following security bugs were fixed:
CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019)
CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266)
CVE-2022-1729: Fixed a sysperfevent_open() race condition against self (bsc#1199507).
CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577)
CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063).
CVE-2022-20008: Fixed bug that allows to read kernel heap memory due to uninitialized data in mmcblkread_single of block.c. (bnc#1199564)
CVE-2022-30594: Fixed restriction bypass on setting the PTSUSPENDSECCOMP flag (bnc#1199505).
CVE-2022-0168: Fixed a NULL pointer dereference in smb2ioctlquery_info. (bsc#1197472)
CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426).
CVE-2022-20141: Fixwed an use after free due to improper locking. This bug could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. (bnc#1200604)
CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650)
CVE-2022-1975: Fixed a sleep-in-atomic bug that allows attacker to crash linux kernel by simulating nfc device from user-space. (bsc#1200143)
CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144)
CVE-2022-32250: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015)
The following non-security bugs were fixed:
ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default (git-fixes).
ACPI: property: Release subnode properties with data nodes (git-fixes).
ACPI: sysfs: Fix BERT error region memory mapping (git-fixes).
ACPI: sysfs: Make sparse happy about address space in use (git-fixes).
ALSA: ctxfi: Add SB046x PCI ID (git-fixes).
ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes (git-fixes).
ALSA: hda - fix unused Realtek function when PM is not enabled (git-fixes).
ALSA: hda/conexant - Fix loopback issue with CX20632 (git-fixes).
ALSA: hda/realtek - Add new type for ALC245 (git-fixes).
ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS (git-fixes).
lpfc: Readd update to version 14.2.0.1 (bsc#1197675 bsc#1196478 bsc#1198989) The update was reverted due to some regression on older hardware. These have been fixed in the meantime, thus update the driver.
mac80211hwsim: call ieee80211txprepareskb under RCU protection (git-fixes).
mac80211: fix rx reordering with non explicit / psmp ack policy (git-fixes).
mac80211: Reset MBSSID parameters upon connection (git-fixes).
mac80211: upgrade passive scan to active scan on DFS channels after beacon rx (git-fixes).
md: fix an incorrect NULL check in doessbneed_changing (git-fixes).
md: fix an incorrect NULL check in mdreloadsb (git-fixes).
media: cx25821: Fix the warning when removing the module (git-fixes).
media: davinci: Make use of the helper function devmplatformioremap_resource() (git-fixes).