Main Vulnerability Database SB20230411114

SB20230411114 - openEuler 22.03 LTS update for kernel

Published: April 11, 2023

Security Bulletin ID SB20230411114

Severity

Low

Patch available

YES

Number of vulnerabilities 6

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 6 secuirty vulnerabilities.

1) Processor optimization removal or modification of security-critical code (CVE-ID: CVE-2022-29901)

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to the way non-transparent sharing of branch predictor targets between contexts. A local user can exploit the vulnerability to gain access to sensitive information.

2) Deadlock (CVE-ID: CVE-2022-4269)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an error in the Linux kernel Traffic Control (TC) subsystem. A local user can use a specific network configuration (redirecting egress packets to ingress using TC action "mirred") to trigger a CPU soft lockup.

3) NULL pointer dereference (CVE-ID: CVE-2023-28327)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the unix_diag_get_exact() function in net/unix/diag.c. A local user can perform a denial of service (DoS) attack.

4) NULL pointer dereference (CVE-ID: CVE-2023-28328)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. A local user can pass specially crafted data to the application and perform a denial of service (DoS) attack.

5) Out-of-bounds read (CVE-ID: CVE-2023-1380)

The vulnerability allows a local user to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within the Broadcom Full MAC Wi-Fi driver (brcmfmac.ko). A local user can trigger an out-of-bounds read error and read contents of kernel memory on the system.

6) Improper Initialization (CVE-ID: CVE-2023-1513)

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to improper initialization when calling the KVM_GET_DEBUGREGS ioctl on 32-bit systems. A local user can run a specially crafted application to gain access to sensitive information.

Remediation

Install update from vendor's website.

References

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2023-1210

Vulnerable Software

openEuler: 22.03 LTS
kernel-tools: before 5.10.0-60.89.0.113
kernel-source: before 5.10.0-60.89.0.113
bpftool: before 5.10.0-60.89.0.113
kernel-debugsource: before 5.10.0-60.89.0.113
kernel-debuginfo: before 5.10.0-60.89.0.113
perf-debuginfo: before 5.10.0-60.89.0.113
kernel-devel: before 5.10.0-60.89.0.113
kernel-tools-devel: before 5.10.0-60.89.0.113
python3-perf: before 5.10.0-60.89.0.113
kernel-headers: before 5.10.0-60.89.0.113
kernel-tools-debuginfo: before 5.10.0-60.89.0.113
python3-perf-debuginfo: before 5.10.0-60.89.0.113
perf: before 5.10.0-60.89.0.113
bpftool-debuginfo: before 5.10.0-60.89.0.113
kernel: before 5.10.0-60.89.0.113

SB20230411114 - openEuler 22.03 LTS update for kernel

Breakdown by Severity

Description

Remediation

References

Please verify you're human