CVE-2022-25636 - privilege escalation through netfilter bug
Hi, just came across CVE-2022-25636 in this article: https://www.zdnet.com/ article/nasty-linux-netfilter-firewall-security-hole-found/ Is there an update for Leap 15.3 and SLES in the works? Tumbleweed should be ok since the bug is "only" in kernels up to 5.6.10 and TW currently runs on 5.16.14. Cheers MH -- Mathias Homann Mathias.Homann@openSUSE.org Jabber (XMPP): lemmy@tuxonline.tech Matrix: @mathias:eregion.de IRC: [Lemmy] on freenode and ircnet (bouncer active) keybase: https://keybase.io/lemmy gpg key fingerprint: 8029 2240 F4DD 7776 E7D2 C042 6B8E 029E 13F2 C102
Am Mittwoch, 16. März 2022, 07:05:04 CET schrieb Mathias Homann:
Hi,
just came across CVE-2022-25636 in this article: https://www.zdnet.com/ article/nasty-linux-netfilter-firewall-security-hole-found/
Is there an update for Leap 15.3 and SLES in the works?
Tumbleweed should be ok since the bug is "only" in kernels up to 5.6.10 and TW currently runs on 5.16.14.
on second thought, Leap and SLES should be fine too: Kernels affected are 5.4 to 5.10 - Leap and SLES use 5.3.x, TW uses 5.16. I hate ZD Net sensationalism. But please someone verify that we're safe about this one, I hate local privilege elevation holes more. Cheers MH -- Mathias Homann Mathias.Homann@openSUSE.org Jabber (XMPP): lemmy@tuxonline.tech Matrix: @mathias:eregion.de IRC: [Lemmy] on freenode and ircnet (bouncer active) keybase: https://keybase.io/lemmy gpg key fingerprint: 8029 2240 F4DD 7776 E7D2 C042 6B8E 029E 13F2 C102
Hi Mathias, That's for double checking this. Our tracking was a bit off as the fix commit was not directly touching the code that introduced the issue in kernel version 5.4. I've updated our tracking and the CVE page will updated shortly. https://www.suse.com/security/cve/CVE-2022-25636.html Thanks again, Alex~ On Wed, Mar 16, 2022 at 07:17:50AM +0100, Mathias Homann wrote:
Am Mittwoch, 16. März 2022, 07:05:04 CET schrieb Mathias Homann:
Hi,
just came across CVE-2022-25636 in this article: https://www.zdnet.com/ article/nasty-linux-netfilter-firewall-security-hole-found/
Is there an update for Leap 15.3 and SLES in the works?
Tumbleweed should be ok since the bug is "only" in kernels up to 5.6.10 and TW currently runs on 5.16.14.
on second thought, Leap and SLES should be fine too: Kernels affected are 5.4 to 5.10 - Leap and SLES use 5.3.x, TW uses 5.16.
I hate ZD Net sensationalism. But please someone verify that we're safe about this one, I hate local privilege elevation holes more.
Cheers MH
-- Mathias Homann Mathias.Homann@openSUSE.org Jabber (XMPP): lemmy@tuxonline.tech Matrix: @mathias:eregion.de IRC: [Lemmy] on freenode and ircnet (bouncer active) keybase: https://keybase.io/lemmy gpg key fingerprint: 8029 2240 F4DD 7776 E7D2 C042 6B8E 029E 13F2 C102
-- Alexander Bergmann <abergmann@suse.com> Security Engineer, GPG: E30A 65A4 0F50 0066 B2B5 F614 DE54 E875 9FFA 4886 SUSE Software Solutions Germany GmbH Maxfeldstr. 5, 90409 Nuremberg, Germany (HRB 36809, AG Nürnberg) Managing Director/Geschäftsführer: Ivo Totev
participants (2)
-
Alexander Bergmann -
Mathias Homann