
CVE-2022-3114 – SUSE Security Advisory - SUSE-SU-2023:0146-1
https://notcve.org/view.php?id=CVE-2022-3114
14 Dec 2022 — An issue was discovered in the Linux kernel through 5.16-rc6. imx_register_uart_clocks in drivers/clk/imx/clk.c lacks check of the return value of kcalloc() and will cause the null pointer dereference. Se descubrió un problema en el kernel de Linux hasta 5.16-rc6. imx_register_uart_clocks en drivers/clk/imx/clk.c carece de verificación del valor de retorno de kcalloc() y provocará la desreferencia del puntero nulo. An update that solves 96 vulnerabilities, contains 50 features and has 246 fixes is now avail... • https://bugzilla.redhat.com/show_bug.cgi?id=2153054 • CWE-476: NULL Pointer Dereference •

CVE-2022-3107 – kernel: hv_netvsc: NULL pointer dereference in netvsc_get_ethtool_stats()
https://notcve.org/view.php?id=CVE-2022-3107
14 Dec 2022 — An issue was discovered in the Linux kernel through 5.16-rc6. netvsc_get_ethtool_stats in drivers/net/hyperv/netvsc_drv.c lacks check of the return value of kvmalloc_array() and will cause the null pointer dereference. Se descubrió un problema en el kernel de Linux hasta 5.16-rc6. netvsc_get_ethtool_stats en drivers/net/hyperv/netvsc_drv.c carece de verificación del valor de retorno de kvmalloc_array() y provocará la desreferencia del puntero nulo. An update that solves 19 vulnerabilities, contains three fe... • https://bugzilla.redhat.com/show_bug.cgi?id=2153060 • CWE-476: NULL Pointer Dereference •

CVE-2022-3113 – SUSE Security Advisory - SUSE-SU-2023:0146-1
https://notcve.org/view.php?id=CVE-2022-3113
14 Dec 2022 — An issue was discovered in the Linux kernel through 5.16-rc6. mtk_vcodec_fw_vpu_init in drivers/media/platform/mtk-vcodec/mtk_vcodec_fw_vpu.c lacks check of the return value of devm_kzalloc() and will cause the null pointer dereference. Se descubrió un problema en el kernel de Linux hasta 5.16-rc6. mtk_vcodec_fw_vpu_init en drivers/media/platform/mtk-vcodec/mtk_vcodec_fw_vpu.c carece de verificación del valor de retorno de devm_kzalloc() y provocará la desreferencia del puntero nulo. An update that solves 1... • https://bugzilla.redhat.com/show_bug.cgi?id=2153053 • CWE-476: NULL Pointer Dereference •

CVE-2022-3112 – SUSE Security Advisory - SUSE-SU-2023:0146-1
https://notcve.org/view.php?id=CVE-2022-3112
14 Dec 2022 — An issue was discovered in the Linux kernel through 5.16-rc6. amvdec_set_canvases in drivers/staging/media/meson/vdec/vdec_helpers.c lacks check of the return value of kzalloc() and will cause the null pointer dereference. Se descubrió un problema en el kernel de Linux hasta 5.16-rc6. amvdec_set_canvases en drivers/staging/media/meson/vdec/vdec_helpers.c carece de verificación del valor de retorno de kzalloc() y provocará la desreferencia del puntero nulo. An update that solves 19 vulnerabilities, contains ... • https://bugzilla.redhat.com/show_bug.cgi?id=2153068 • CWE-476: NULL Pointer Dereference •

CVE-2022-3105 – kernel: RDMA/uverbs: NULL pointer dereference in uapi_finalize()
https://notcve.org/view.php?id=CVE-2022-3105
14 Dec 2022 — An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array(). Se descubrió un problema en el kernel de Linux hasta 5.16-rc6. uapi_finalize en drivers/infiniband/core/uverbs_uapi.c carece de verificación de kmalloc_array(). An update that solves 19 vulnerabilities, contains three features and has 71 fixes is now available. The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bug fixes. • https://bugzilla.redhat.com/show_bug.cgi?id=2153067 • CWE-476: NULL Pointer Dereference •

CVE-2022-3115 – SUSE Security Advisory - SUSE-SU-2023:0146-1
https://notcve.org/view.php?id=CVE-2022-3115
14 Dec 2022 — An issue was discovered in the Linux kernel through 5.16-rc6. malidp_crtc_reset in drivers/gpu/drm/arm/malidp_crtc.c lacks check of the return value of kzalloc() and will cause the null pointer dereference. Se descubrió un problema en el kernel de Linux hasta 5.16-rc6. malidp_crtc_reset en drivers/gpu/drm/arm/malidp_crtc.c carece de verificación del valor de retorno de kzalloc() y provocará la desreferencia del puntero nulo. An update that solves 19 vulnerabilities, contains three features and has 71 fixes ... • https://bugzilla.redhat.com/show_bug.cgi?id=2153058 • CWE-476: NULL Pointer Dereference •

CVE-2022-3108 – kernel: drm/amdkfd: NULL pointer dereference in kfd_parse_subtype_iolink()
https://notcve.org/view.php?id=CVE-2022-3108
14 Dec 2022 — An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers/gpu/drm/amd/amdkfd/kfd_crat.c lacks check of the return value of kmemdup(). Se descubrió un problema en el kernel de Linux hasta 5.16-rc6. kfd_parse_subtype_iolink en drivers/gpu/drm/amd/amdkfd/kfd_crat.c carece de verificación del valor de retorno de kmemdup(). It was discovered that the Traffic-Control Index implementation in the Linux kernel did not properly perform filter deactivation in some situations. A ... • https://bugzilla.redhat.com/show_bug.cgi?id=2153052 • CWE-252: Unchecked Return Value CWE-476: NULL Pointer Dereference •

CVE-2022-3106 – kernel: sfc_ef100: NULL pointer dereference in ef100_update_stats()
https://notcve.org/view.php?id=CVE-2022-3106
14 Dec 2022 — An issue was discovered in the Linux kernel through 5.16-rc6. ef100_update_stats in drivers/net/ethernet/sfc/ef100_nic.c lacks check of the return value of kmalloc(). Se descubrió un problema en el kernel de Linux hasta 5.16-rc6. ef100_update_stats en drivers/net/ethernet/sfc/ef100_nic.c carece de verificación del valor de retorno de kmalloc(). An update that solves 19 vulnerabilities, contains three features and has 71 fixes is now available. The SUSE Linux Enterprise 15 SP3 kernel was updated to receive v... • https://bugzilla.redhat.com/show_bug.cgi?id=2153066 • CWE-476: NULL Pointer Dereference •

CVE-2022-42328 – Ubuntu Security Notice USN-5883-1
https://notcve.org/view.php?id=CVE-2022-42328
07 Dec 2022 — Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The patch for XSA-392 introduced another issue which might result in a deadlock when trying to free the SKB of a packet dropped due to the XSA-392 handling (CVE-2022-42328). Additionally when dropping packages for other reasons the same deadlock could occur in case of netpoll being active for the interface the xen-netback driver ... • http://www.openwall.com/lists/oss-security/2022/12/08/2 • CWE-667: Improper Locking •

CVE-2022-42329 – SUSE Security Advisory - SUSE-SU-2022:4504-1
https://notcve.org/view.php?id=CVE-2022-42329
07 Dec 2022 — Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The patch for XSA-392 introduced another issue which might result in a deadlock when trying to free the SKB of a packet dropped due to the XSA-392 handling (CVE-2022-42328). Additionally when dropping packages for other reasons the same deadlock could occur in case of netpoll being active for the interface the xen-netback driver ... • http://www.openwall.com/lists/oss-security/2022/12/08/2 • CWE-667: Improper Locking •