Anolis OS update for kernel

Published: 2023-02-24 | Updated: 2025-03-28

Risk	Medium
Patch available	YES
Number of vulnerabilities	3
CVE-ID	CVE-2022-2873 CVE-2022-41222 CVE-2022-43945
CWE-ID	CWE-125 CWE-416 CWE-119
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	Anolis OS Operating systems & Components / Operating system kernel-doc Operating systems & Components / Operating system package or component kernel-abi-stablelists Operating systems & Components / Operating system package or component python3-perf Operating systems & Components / Operating system package or component perf Operating systems & Components / Operating system package or component kernel-tools-libs Operating systems & Components / Operating system package or component kernel-tools Operating systems & Components / Operating system package or component kernel-modules-extra Operating systems & Components / Operating system package or component kernel-modules Operating systems & Components / Operating system package or component kernel-headers Operating systems & Components / Operating system package or component kernel-devel Operating systems & Components / Operating system package or component kernel-debug-modules-extra Operating systems & Components / Operating system package or component kernel-debug-modules Operating systems & Components / Operating system package or component kernel-debug-devel Operating systems & Components / Operating system package or component kernel-debug-core Operating systems & Components / Operating system package or component kernel-debug Operating systems & Components / Operating system package or component kernel-cross-headers Operating systems & Components / Operating system package or component kernel-core Operating systems & Components / Operating system package or component kernel Operating systems & Components / Operating system package or component bpftool Operating systems & Components / Operating system package or component
Vendor	OpenAnolis

Security Bulletin

This security bulletin contains information about 3 vulnerabilities.

1) Out-of-bounds read

EUVDB-ID: #VU66807

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-2873

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to crash the kernel.

The vulnerability exists due to a boundary condition within the Intel iSMT SMBus host controller driver. A local user can send specially crafted data to the I2C_SMBUS IOCTL, trigger an out-of-bounds read error and crash the system.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-425.13.1.0.1

kernel-abi-stablelists: before 4.18.0-425.13.1.0.1

python3-perf: before 4.18.0-425.13.1.0.1

perf: before 4.18.0-425.13.1.0.1

kernel-tools-libs: before 4.18.0-425.13.1.0.1

kernel-tools: before 4.18.0-425.13.1.0.1

kernel-modules-extra: before 4.18.0-425.13.1.0.1

kernel-modules: before 4.18.0-425.13.1.0.1

kernel-headers: before 4.18.0-425.13.1.0.1

kernel-devel: before 4.18.0-425.13.1.0.1

kernel-debug-modules-extra: before 4.18.0-425.13.1.0.1

kernel-debug-modules: before 4.18.0-425.13.1.0.1

kernel-debug-devel: before 4.18.0-425.13.1.0.1

kernel-debug-core: before 4.18.0-425.13.1.0.1

kernel-debug: before 4.18.0-425.13.1.0.1

kernel-cross-headers: before 4.18.0-425.13.1.0.1

kernel-core: before 4.18.0-425.13.1.0.1

kernel: before 4.18.0-425.13.1.0.1

bpftool: before 4.18.0-425.13.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0058

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Use-after-free

EUVDB-ID: #VU68422

Risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-41222

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to a use-after-free error caused by a stale TLB in mm/mremap.c, because an rmap lock is not held during a PUD move. A local user can gain access to sensitive information.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-425.13.1.0.1

kernel-abi-stablelists: before 4.18.0-425.13.1.0.1

python3-perf: before 4.18.0-425.13.1.0.1

perf: before 4.18.0-425.13.1.0.1

kernel-tools-libs: before 4.18.0-425.13.1.0.1

kernel-tools: before 4.18.0-425.13.1.0.1

kernel-modules-extra: before 4.18.0-425.13.1.0.1

kernel-modules: before 4.18.0-425.13.1.0.1

kernel-headers: before 4.18.0-425.13.1.0.1

kernel-devel: before 4.18.0-425.13.1.0.1

kernel-debug-modules-extra: before 4.18.0-425.13.1.0.1

kernel-debug-modules: before 4.18.0-425.13.1.0.1

kernel-debug-devel: before 4.18.0-425.13.1.0.1

kernel-debug-core: before 4.18.0-425.13.1.0.1

kernel-debug: before 4.18.0-425.13.1.0.1

kernel-cross-headers: before 4.18.0-425.13.1.0.1

kernel-core: before 4.18.0-425.13.1.0.1

kernel: before 4.18.0-425.13.1.0.1

bpftool: before 4.18.0-425.13.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0058

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Buffer overflow

EUVDB-ID: #VU69766

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-43945

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service attacl.

The vulnerability exists due to a boundary error within the Linux kernel NFSD implementation. A remote attacker can send the RPC message over TCP with garbage data added at the end of the message, trigger memory corruption and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

kernel-doc: before 4.18.0-425.13.1.0.1

kernel-abi-stablelists: before 4.18.0-425.13.1.0.1

python3-perf: before 4.18.0-425.13.1.0.1

perf: before 4.18.0-425.13.1.0.1

kernel-tools-libs: before 4.18.0-425.13.1.0.1

kernel-tools: before 4.18.0-425.13.1.0.1

kernel-modules-extra: before 4.18.0-425.13.1.0.1

kernel-modules: before 4.18.0-425.13.1.0.1

kernel-headers: before 4.18.0-425.13.1.0.1

kernel-devel: before 4.18.0-425.13.1.0.1

kernel-debug-modules-extra: before 4.18.0-425.13.1.0.1

kernel-debug-modules: before 4.18.0-425.13.1.0.1

kernel-debug-devel: before 4.18.0-425.13.1.0.1

kernel-debug-core: before 4.18.0-425.13.1.0.1

kernel-debug: before 4.18.0-425.13.1.0.1

kernel-cross-headers: before 4.18.0-425.13.1.0.1

kernel-core: before 4.18.0-425.13.1.0.1

kernel: before 4.18.0-425.13.1.0.1

bpftool: before 4.18.0-425.13.1.0.1

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0058

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.