Hash: SHA256

             AUSCERT External Security Bulletin Redistribution

                   Security update for the Linux Kernel
                             15 September 2022


        AusCERT Security Bulletin Summary

Product:           Linux Kernel
Publisher:         SUSE
Operating System:  SUSE
Resolution:        Patch/Upgrade
CVE Names:         CVE-2022-39190 CVE-2022-39188 CVE-2022-36879
                   CVE-2022-26373 CVE-2022-20369 CVE-2022-20368
                   CVE-2022-3028 CVE-2022-2977 CVE-2022-2905
                   CVE-2022-2663 CVE-2022-2588 CVE-2021-4203
                   CVE-2021-4155 CVE-2020-27784 CVE-2016-3695

Original Bulletin: 

Comment: CVSS (Max):  7.0 CVE-2022-39188 (CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H)
         CVSS Source: SUSE
         Calculator:  https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

- --------------------------BEGIN INCLUDED TEXT--------------------

SUSE Security Update: Security update for the Linux Kernel


Announcement ID:   SUSE-SU-2022:3264-1
Rating:            important
References:        #1023051 #1065729 #1156395 #1179722 #1179723 #1181862
                   #1191662 #1191667 #1191881 #1192594 #1192968 #1194272
                   #1194535 #1197158 #1197755 #1197756 #1197757 #1197760
                   #1197763 #1197920 #1198971 #1199291 #1200431 #1200845
                   #1200868 #1200869 #1200870 #1200871 #1200872 #1200873
                   #1201019 #1201420 #1201610 #1201705 #1201726 #1201948
                   #1202096 #1202097 #1202346 #1202347 #1202393 #1202396
                   #1202447 #1202564 #1202577 #1202636 #1202672 #1202701
                   #1202708 #1202709 #1202710 #1202711 #1202712 #1202713
                   #1202714 #1202715 #1202716 #1202717 #1202718 #1202720
                   #1202722 #1202745 #1202756 #1202810 #1202811 #1202860
                   #1202895 #1202898 #1203063 #1203098 #1203107 #1203116
                   #1203117 #1203135 #1203136 #1203137
Cross-References:  CVE-2016-3695 CVE-2020-27784 CVE-2021-4155 CVE-2021-4203
                   CVE-2022-20368 CVE-2022-20369 CVE-2022-2588 CVE-2022-26373
                   CVE-2022-2663 CVE-2022-2905 CVE-2022-2977 CVE-2022-3028
                   CVE-2022-36879 CVE-2022-39188 CVE-2022-39190
Affected Products:
                   SUSE Linux Enterprise Desktop 15-SP3
                   SUSE Linux Enterprise High Availability 15-SP3
                   SUSE Linux Enterprise High Performance Computing
                   SUSE Linux Enterprise High Performance Computing 15-SP3
                   SUSE Linux Enterprise Micro 5.1
                   SUSE Linux Enterprise Micro 5.2
                   SUSE Linux Enterprise Module for Basesystem 15-SP3
                   SUSE Linux Enterprise Module for Development Tools 15-SP3
                   SUSE Linux Enterprise Module for Legacy Software 15-SP3
                   SUSE Linux Enterprise Module for Live Patching 15-SP3
                   SUSE Linux Enterprise Server
                   SUSE Linux Enterprise Server 15-SP3
                   SUSE Linux Enterprise Server for SAP Applications
                   SUSE Linux Enterprise Server for SAP Applications 15-SP3
                   SUSE Linux Enterprise Storage 7.1
                   SUSE Linux Enterprise Workstation Extension 15-SP3
                   SUSE Manager Proxy 4.2
                   SUSE Manager Retail Branch Server 4.2
                   SUSE Manager Server 4.2
                   openSUSE Leap 15.3
                   openSUSE Leap 15.4
                   openSUSE Leap Micro 5.2

An update that solves 15 vulnerabilities, contains one feature and has 61 fixes
is now available.


The SUSE Linux Enterprise 15 SP3 kernel was updated receive various security
and bugfixes.

The following security bugs were fixed:

  o CVE-2022-39190: Fixed an issue that was discovered in net/netfilter/
    nf_tables_api.c and could cause a denial of service upon binding to an
    already bound chain (bnc#1203117).
  o CVE-2022-39188: Fixed race condition in include/asm-generic/tlb.h where a
    device driver can free a page while it still has stale TLB entries (bnc#
  o CVE-2022-36879: Fixed an issue in xfrm_expand_policies in net/xfrm/
    xfrm_policy.c where a refcount could be dropped twice (bnc#1201948).
  o CVE-2022-3028: Fixed race condition that was found in the IP framework for
    transforming packets (XFRM subsystem) (bnc#1202898).
  o CVE-2022-2977: Fixed reference counting for struct tpm_chip (bsc#1202672).
  o CVE-2022-2905: Fixed tnum_range usage on array range checking for poke
    descriptors (bsc#1202564, bsc#1202860).
  o CVE-2022-2663: Fixed an issue that was found in nf_conntrack_irc where the
    message handling could be confused and incorrectly matches the message (bnc
  o CVE-2022-26373: Fixed non-transparent sharing of return predictor targets
    between contexts in some Intel Processors (bnc#1201726).
  o CVE-2022-2588: Fixed use-after-free in cls_route (bsc#1202096).
  o CVE-2022-20369: Fixed out of bounds write in v4l2_m2m_querybuf of
    v4l2-mem2mem.c (bnc#1202347).
  o CVE-2022-20368: Fixed slab-out-of-bounds access in packet_recvmsg() (bsc#
  o CVE-2021-4203: Fixed use-after-free read flaw that was found in
    sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS
    race with listen() (bnc#1194535).
  o CVE-2021-4155: Fixed a data leak flaw that was found in the way
    XFS_IOC_ALLOCSP IOCTL in the XFS filesystem (bnc#1194272).
  o CVE-2020-27784: Fixed a vulnerability that was found in printer_ioctl()
    printer_ioctl() when accessing a deallocated instance (bnc#1202895).
  o CVE-2016-3695: Fixed an issue inside the einj_error_inject function in
    drivers/acpi/apei/einj.c that allowed users to simulate hardware errors and
    consequently cause a denial of service (bnc#1023051).

The following non-security bugs were fixed:

  o ACPI: EC: Remove duplicate ThinkPad X1 Carbon 6th entry from DMI quirks
  o ACPI: LPSS: Fix missing check in register_device_clock() (git-fixes).
  o ACPI: PM: save NVS memory for Lenovo G40-45 (git-fixes).
  o ACPI: processor: Remove freq Qos request for all CPUs (git-fixes).
  o ACPI: property: Return type of acpi_add_nondev_subnodes() should be bool
  o ACPI: video: Force backlight native for some TongFang devices (git-fixes).
  o ALSA: bcd2000: Fix a UAF bug on the error path of probing (git-fixes).
  o ALSA: hda/cirrus - support for iMac 12,1 model (git-fixes).
  o ALSA: hda/conexant: Add quirk for LENOVO 20149 Notebook model (git-fixes).
  o ALSA: hda/realtek: Add a quirk for HP OMEN 15 (8786) mute LED (git-fixes).
  o ALSA: hda/realtek: Add mute LED quirk for HP Omen laptop (git-fixes).
  o ALSA: hda/realtek: Add new alc285-hp-amp-init model (git-fixes).
  o ALSA: hda/realtek: Add quirk for Clevo L140PU (git-fixes).
  o ALSA: hda/realtek: Add quirk for Clevo NP50PNJ (git-fixes).
  o ALSA: hda/realtek: Add quirk for Clevo NP70PNJ (git-fixes).
  o ALSA: hda/realtek: Add quirk for Clevo NP70PNP (git-fixes).
  o ALSA: hda/realtek: Add quirk for Clevo NS50PU (git-fixes).
  o ALSA: hda/realtek: Add quirk for Clevo NV45PZ (git-fixes).
  o ALSA: hda/realtek: Add quirk for Dell Latitude 7520 (git-fixes).
  o ALSA: hda/realtek: Add quirk for HP Dev One (git-fixes).
  o ALSA: hda/realtek: Add quirk for HP Spectre x360 15-eb0xxx (git-fixes).
  o ALSA: hda/realtek: Add quirk for TongFang devices with pop noise
  o ALSA: hda/realtek: Add quirk for another Asus K42JZ model (git-fixes).
  o ALSA: hda/realtek: Add quirk for the Framework Laptop (git-fixes).
  o ALSA: hda/realtek: Fix LED on HP ProBook 435 G7 (git-fixes).
  o ALSA: hda/realtek: Fix deadlock by COEF mutex (git-fixes).
  o ALSA: hda/realtek: Fix headset mic for Acer SF313-51 (git-fixes).
  o ALSA: hda/realtek: fix mute/micmute LEDs for HP machines (git-fixes).
  o ALSA: hda/realtek: fix mute/micmute LEDs for a HP ProBook (git-fixes).
  o ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine
  o ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machines
  o ALSA: info: Fix llseek return value when using callback (git-fixes).
  o ALSA: usb-audio: More comprehensive mixer map for ASUS ROG Zenith II
  o ARM: 9077/1: PLT: Move struct plt_entries definition to header (git-fixes).
  o ARM: 9078/1: Add warn suppress parameter to arm_gen_branch_link()
  o ARM: 9079/1: ftrace: Add MODULE_PLTS support (git-fixes).
  o ARM: 9098/1: ftrace: MODULE_PLT: Fix build problem without DYNAMIC_FTRACE
  o ASoC: SOF: debug: Fix potential buffer overflow by snprintf() (git-fixes).
  o ASoC: audio-graph-card: Add of_node_put() in fail path (git-fixes).
  o ASoC: codecs: da7210: add check for i2c_add_driver (git-fixes).
  o ASoC: codecs: msm8916-wcd-digital: move gains from SX_TLV to S8_TLV
  o ASoC: codecs: wcd9335: move gains from SX_TLV to S8_TLV (git-fixes).
  o ASoC: mt6797-mt6351: Fix refcount leak in mt6797_mt6351_dev_probe
  o ASoC: qcom: q6dsp: Fix an off-by-one in q6adm_alloc_copp() (git-fixes).
  o ASoC: tas2770: Allow mono streams (git-fixes).
  o Bluetooth: L2CAP: Fix build errors in some archs (git-fixes).
  o Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression (git-fixes).
  o Bluetooth: MGMT: Fixes build warnings with C=1 (git-fixes).
  o Fix parsing of rpm/macros.kernel-source on SLE12 (bsc#1201019).
  o HID: alps: Declare U1_UNICORN_LEGACY support (git-fixes).
  o HID: steam: Prevent NULL pointer dereference in steam_{recv,send}_report
  o HID: wacom: Do not register pad_input for touch switch (git-fixes).
  o HID: wacom: Only report rotation for art pen (git-fixes).
  o Input: iforce - wake up after clearing IFORCE_XMIT_RUNNING flag
  o Input: rk805-pwrkey - fix module autoloading (git-fixes).
  o KABI: cgroup: Restore KABI of css_set (bsc#1201610).
  o KVM: PPC: Book3S HV: Context tracking exit guest context before enabling
    irqs (bsc#1065729).
  o KVM: PPC: Book3S HV: Prevent POWER7/8 TLB flush flushing SLB (bsc#1156395).
  o KVM: PPC: Book3S HV: Use GLOBAL_TOC for kvmppc_h_set_dabr/xdabr() (bsc#
  o KVM: PPC: Fix vmx/vsx mixup in mmio emulation (bsc#1156395).
  o KVM: PPC: Use arch_get_random_seed_long instead of powernv variant (bsc#
  o KVM: VMX: Refuse to load kvm_intel if EPT and NX are disabled (git-fixes).
  o KVM: nVMX: Snapshot pre-VM-Enter BNDCFGS for !nested_run_pending case
  o KVM: nVMX: Snapshot pre-VM-Enter DEBUGCTL for !nested_run_pending case
  o KVM: x86: accept userspace interrupt only if no event is injected
  o NFS: fix nfs_path in case of a rename retry (git-fixes).
  o NFSD: Add missing NFSv2 .pc_func methods (git-fixes).
  o NFSD: Clamp WRITE offsets (git-fixes).
  o NFSD: Fix possible sleep during nfsd4_release_lockowner() (git-fixes).
  o NFSD: prevent integer overflow on 32 bit systems (git-fixes).
  o NFSD: prevent underflow in nfssvc_decode_writeargs() (git-fixes).
  o NFSv4: Fix second deadlock in nfs4_evict_inode() (git-fixes).
  o NFSv4: nfs4_proc_set_acl needs to restore NFS_CAP_UIDGID_NOMAP on error
  o NTB: ntb_tool: uninitialized heap data in tool_fn_write() (git-fixes).
  o PCI/ACPI: Guard ARM64-specific mcfg_quirks (git-fixes).
  o PCI: Add ACS quirk for Broadcom BCM5750x NICs (git-fixes).
  o PCI: hv: Fix hv_arch_irq_unmask() for multi-MSI (bsc#1200845).
  o PCI: hv: Fix interrupt mapping for multi-MSI (bsc#1200845).
  o PCI: hv: Fix multi-MSI to allow more than one MSI vector (bsc#1200845).
  o PCI: hv: Make the code arch neutral by adding arch specific interfaces (bsc
  o PCI: hv: Only reuse existing IRTE allocation for Multi-MSI (bsc#1200845).
  o PCI: hv: Reuse existing IRTE allocation in compose_msi_msg() (bsc#1200845).
  o PCI: qcom: Fix pipe clock imbalance (git-fixes).
  o SUNRPC reverting d03727b248d0 ("NFSv4 fix CLOSE not waiting for direct IO
    compeletion") (git-fixes).
  o SUNRPC: Clean up scheduling of autoclose (git-fixes).
  o SUNRPC: Do not dereference xprt->snd_task if it's a cookie (git-fixes).
  o SUNRPC: Fix READ_PLUS crasher (git-fixes).
  o SUNRPC: Prevent immediate close+reconnect (git-fixes).
  o VMCI: Add support for ARM64 (bsc#1199291, jsc#SLE-24635).
  o VMCI: Check exclusive_vectors when freeing interrupt 1 (bsc#1199291, jsc#
  o VMCI: Enforce queuepair max size for IOCTL_VMCI_QUEUEPAIR_ALLOC (bsc#
    1199291, jsc#SLE-24635).
  o VMCI: Fix some error handling paths in vmci_guest_probe_device() (bsc#
    1199291, jsc#SLE-24635).
  o VMCI: Release notification_bitmap in error path (bsc#1199291, jsc#
  o VMCI: dma dg: add MMIO access to registers (bsc#1199291, jsc#SLE-24635).
  o VMCI: dma dg: add support for DMA datagrams receive (bsc#1199291, jsc#
  o VMCI: dma dg: add support for DMA datagrams sends (bsc#1199291, jsc#
  o VMCI: dma dg: allocate send and receive buffers for DMA datagrams (bsc#
    1199291, jsc#SLE-24635).
  o VMCI: dma dg: detect DMA datagram capability (bsc#1199291, jsc#SLE-24635).
  o VMCI: dma dg: register dummy IRQ handlers for DMA datagrams (bsc#1199291,
  o VMCI: dma dg: set OS page size (bsc#1199291, jsc#SLE-24635).
  o VMCI: dma dg: whitespace formatting change for vmci register defines (bsc#
    1199291, jsc#SLE-24635).
  o arm64: signal: nofpsimd: Do not allocate fp/simd context when not available
  o asm-generic: sections: refactor memory_intersects (git-fixes).
  o ata: libata-eh: Add missing command name (git-fixes).
  o atm: idt77252: fix use-after-free bugs caused by tst_timer (git-fixes).
  o blk-iocost: clamp inuse and skip noops in __propagate_weights() (bsc#
  o blk-iocost: fix operation ordering in iocg_wake_fn() (bsc#1202720).
  o blk-iocost: fix weight updates of inner active iocgs (bsc#1202717).
  o blk-iocost: rename propagate_active_weights() to propagate_weights() (bsc#
  o blktrace: fix blk_rq_merge documentation (git-fixes).
  o can: ems_usb: fix clang's -Wunaligned-access warning (git-fixes).
  o can: m_can: process interrupt only when not runtime suspended (git-fixes).
  o ceph: do not leak snap_rwsem in handle_cap_grant (bsc#1202810).
  o ceph: do not truncate file in atomic_open (bsc#1202811).
  o cgroup: Trace event cgroup id fields should be u64 (git-fixes).
  o cgroup: Use separate src/dst nodes when preloading css_sets for migration
  o clk: bcm: rpi: Fix error handling of raspberrypi_fw_get_rate (git-fixes).
  o clk: core: Fix runtime PM sequence in clk_core_unprepare() (git-fixes).
  o clk: core: Honor CLK_OPS_PARENT_ENABLE for clk gate ops (git-fixes).
  o clk: qcom: ipq8074: dont disable gcc_sleep_clk_src (git-fixes).
  o clk: rockchip: add sclk_mac_lbtest to rk3188_critical_clocks (git-fixes).
  o coresight: cti: Correct the parameter for pm_runtime_put (git-fixes).
  o devlink: Fix use-after-free after a failed reload (git-fixes).
  o dm raid: fix KASAN warning in raid5_add_disks (git-fixes).
  o dmaengine: sprd: Cleanup in .remove() after pm_runtime_get_sync() failed
  o dpaa2-eth: unregister the netdev before disconnecting from the PHY
  o driver core: Do not probe devices after bus_type.match() probe deferral
  o drm/amdgpu: Check BO's requested pinning domains against its
    preferred_domains (git-fixes).
  o drm/amdgpu: remove useless condition in amdgpu_job_stop_all_jobs_on_sched()
  o drm/gem: Properly annotate WW context on drm_gem_lock_reservations() error
  o drm/i915/reg: Fix spelling mistake "Unsupport" -> "Unsupported"
  o drm/meson: Fix overflow implicit truncation warnings (git-fixes).
  o drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors()
  o drm/msm/dsi: Fix number of regulators for SDM660 (git-fixes).
  o drm/msm/dsi: Fix number of regulators for msm8996_dsi_cfg (git-fixes).
  o drm/msm/dsi: fix the inconsistent indenting (git-fixes).
  o drm/sun4i: dsi: Prevent underflow when computing packet sizes (git-fixes).
  o ehea: fix error return code in ehea_restart_qps() (git-fixes).
  o enetc: Fix endianness issues for enetc_qos (git-fixes).
  o ethernet: sun: niu: fix missing checks of niu_pci_eeprom_read()
  o ext4: Fix BUG_ON in ext4_bread when write quota data (bsc#1197755).
  o ext4: add reserved GDT blocks check (bsc#1202712).
  o ext4: do not set SB_ACTIVE in ext4_orphan_cleanup() (bsc#1202708).
  o ext4: do not use the orphan list when migrating an inode (bsc#1197756).
  o ext4: fix bug_on in ext4_writepages (bsc#1200872).
  o ext4: fix error handling code in add_new_gdb (bsc#1179722).
  o ext4: fix error handling in ext4_restore_inline_data() (bsc#1197757).
  o ext4: fix invalid inode checksum (bsc#1179723).
  o ext4: fix loff_t overflow in ext4_max_bitmap_size() (bsc#1202709).
  o ext4: fix overhead calculation to account for the reserved gdt blocks (bsc#
  o ext4: fix potential infinite loop in ext4_dx_readdir() (bsc#1191662).
  o ext4: fix race when reusing xattr blocks (bsc#1198971).
  o ext4: fix symlink file size not match to file content (bsc#1200868).
  o ext4: fix use-after-free in ext4_rename_dir_prepare (bsc#1200871).
  o ext4: fix use-after-free in ext4_search_dir (bsc#1202710).
  o ext4: fix warning in ext4_handle_inode_extension (bsc#1202711).
  o ext4: force overhead calculation if the s_overhead_cluster makes no sense
  o ext4: recover csum seed of tmp_inode after migrating to extents (bsc#
  o ext4: remove EA inode entry from mbcache on inode eviction (bsc#1198971).
  o ext4: unindent codeblock in ext4_xattr_block_set() (bsc#1198971).
  o fbcon: Fix boundary checks for fbcon=vc:n1-n2 parameters (git-fixes).
  o firmware: tegra: bpmp: Do only aligned access to IPC memory area
  o fs-writeback: writeback_sb_inodes: Recalculate 'wrote' according skipped
    pages (bsc#1200873).
  o fuse: Remove the control interface for virtio-fs (bsc#1203137).
  o fuse: ioctl: translate ENOSYS (bsc#1203136).
  o fuse: limit nsec (bsc#1203135).
  o gadgetfs: ep_io - wait until IRQ finishes (git-fixes).
  o geneve: do not use RT_TOS for IPv6 flowlabel (git-fixes).
  o geneve: fix TOS inheriting for ipv4 (git-fixes).
  o gpio: pca953x: Add mutex_lock for regcache sync in PM (git-fixes).
  o hv_netvsc: Load and store the proper (NBL_HASH_INFO) per-packet info (bsc#
  o hwmon: (gpio-fan) Fix array out of bounds access (git-fixes).
  o i2c: imx: Make sure to unregister adapter on remove() (git-fixes).
  o ice: report supported and advertised autoneg using PHY capabilities
  o ieee802154/adf7242: defer destroy_workqueue call (git-fixes).
  o iio: adc: mcp3911: make use of the sign bit (git-fixes).
  o iio: adc: mcp3911: use correct formula for AD conversion (git-fixes).
  o intel_th: pci: Add Meteor Lake-P support (git-fixes).
  o intel_th: pci: Add Raptor Lake-S CPU support (git-fixes).
  o intel_th: pci: Add Raptor Lake-S PCH support (git-fixes).
  o iommu/amd: Simplify and Consolidate Virtual APIC (AVIC) Enablement
  o iommu/arm-smmu: qcom_iommu: Add of_node_put() when breaking out of loop
  o iommu/exynos: Handle failed IOMMU device registration properly (git-fixes).
  o iommu/iova: Improve 32-bit free space estimate (git-fixes).
  o iommu/ipmmu-vmsa: Check for error num after setting mask (git-fixes).
  o iommu/mediatek: Add list_del in mtk_iommu_remove (git-fixes).
  o iommu/msm: Fix an incorrect NULL check on list iterator (git-fixes).
  o iommu/omap: Fix regression in probe for NULL pointer dereference
  o iommu/vt-d: Calculate mask for non-aligned flushes (git-fixes).
  o iommu/vt-d: Fix PCI bus rescan device hot add (git-fixes).
  o iommu/vt-d: Fix RID2PASID setup/teardown failure (git-fixes).
  o iommu/vt-d: avoid invalid memory access via node_online(NUMA_NO_NODE)
  o ipheth: fix EOVERFLOW in ipheth_rcvbulk_callback (git-fixes).
  o ipmi: ssif: initialize ssif_info->client early (git-fixes).
  o ixgbevf: add correct exception tracing for XDP (git-fixes).
  o jbd2: fix assertion 'jh->b_frozen_data == NULL' failure when journal
    aborted (bsc#1202716).
  o jbd2: fix outstanding credits assert in jbd2_journal_commit_transaction()
  o kabi/severities: add stmmac driver local sumbols
  o kbuild: do not create built-in objects for external module builds (jsc#
    SLE-24559 bsc#1202756).
  o kbuild: dummy-tools: avoid tmpdir leak in dummy gcc (bsc#1181862
  o kbuild: dummy-tools: avoid tmpdir leak in dummy gcc (git-fixes).
  o kernel-obs-build: include qemu_fw_cfg (boo#1201705)
  o kfifo: fix kfifo_to_user() return type (git-fixes).
  o kfifo: fix ternary sign extension bugs (git-fixes).
  o lib/list_debug.c: Detect uninitialized lists (git-fixes).
  o lib: bitmap: provide devm_bitmap_alloc() and devm_bitmap_zalloc()
  o lightnvm: Remove lightnvm implemenation (bsc#1191881 bsc#1201420
  o list: add "list_del_init_careful()" to go with "list_empty_careful()" (bsc#
  o locking/lockdep: Avoid potential access of invalid memory in lock_class
  o loop: Fix missing discard support when using LOOP_CONFIGURE (bsc#1202718).
  o mbcache: add functions to delete entry if unused (bsc#1198971).
  o mbcache: do not reclaim used entries (bsc#1198971).
  o md/bitmap: do not set sb values if can't pass sanity check (bsc#1197158).
  o mfd: max77620: Fix refcount leak in max77620_initialise_fps (git-fixes).
  o mfd: t7l66xb: Drop platform disable callback (git-fixes).
  o misc: fastrpc: fix memory corruption on open (git-fixes).
  o misc: fastrpc: fix memory corruption on probe (git-fixes).
  o mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse (git-fixes,
  o mm: bdi: initialize bdi_min_ratio when bdi is unregistered (bsc#1197763).
  o mm: memcontrol: fix potential oom_lock recursion deadlock (bsc#1202447).
  o mmc: pxamci: Fix an error handling path in pxamci_probe() (git-fixes).
  o mmc: pxamci: Fix another error handling path in pxamci_probe() (git-fixes).
  o module: Ignore _GLOBAL_OFFSET_TABLE_ when warning for undefined symbols
  o mtd: maps: Fix refcount leak in ap_flash_init (git-fixes).
  o mtd: maps: Fix refcount leak in of_flash_probe_versatile (git-fixes).
  o mtd: partitions: Fix refcount leak in parse_redboot_of (git-fixes).
  o mtd: rawnand: meson: Fix a potential double free issue (git-fixes).
  o mtd: sm_ftl: Fix deadlock caused by cancel_work_sync in sm_release
  o mtd: st_spi_fsm: Add a clk_disable_unprepare() in .probe()'s error path
  o net/mlx5e: Check for needed capability for cvlan matching (git-fixes).
  o net/sonic: Fix a resource leak in an error handling path in
    'jazz_sonic_probe()' (git-fixes).
  o net: bcmgenet: Add mdio-bcm-unimac soft dependency (git-fixes).
  o net: cpsw: Properly initialise struct page_pool_params (git-fixes).
  o net: cpsw: add missing of_node_put() in cpsw_probe_dt() (git-fixes).
  o net: davinci_emac: Fix incorrect masking of tx and rx error channel
  o net: dsa: b53: fix an off by one in checking "vlan->vid" (git-fixes).
  o net: dsa: felix: suppress -EPROBE_DEFER errors (git-fixes).
  o net: dsa: mt7530: fix VLAN traffic leaks (git-fixes).
  o net: enetc: Use pci_release_region() to release some resources (git-fixes).
  o net: enetc: report software timestamping via SO_TIMESTAMPING (git-fixes).
  o net: enetc: unmap DMA in enetc_send_cmd() (git-fixes).
  o net: ethernet: aeroflex: fix UAF in greth_of_remove (git-fixes).
  o net: ethernet: ezchip: fix UAF in nps_enet_remove (git-fixes).
  o net: ethernet: ezchip: fix error handling (git-fixes).
  o net: ethernet: ezchip: remove redundant check (git-fixes).
  o net: ethernet: fix potential use-after-free in ec_bhf_remove (git-fixes).
  o net: ethernet: ti: cpsw_ale: Fix access to un-initialized memory
  o net: fec: fix the potential memory leak in fec_enet_init() (git-fixes).
  o net: fec_ptp: add clock rate zero check (git-fixes).
  o net: ftgmac100: Fix crash when removing driver (git-fixes).
  o net: hdlc_x25: Return meaningful error code in x25_open (git-fixes).
  o net: hns: Fix kernel-doc (git-fixes).
  o net: lantiq: fix memory corruption in RX ring (git-fixes).
  o net: lapbether: Prevent racing when checking whether the netif is running
  o net: moxa: Use devm_platform_get_and_ioremap_resource() (git-fixes).
  o net: mscc: ocelot: correctly report the timestamping RX filters in ethtool
  o net: mscc: ocelot: do not downgrade timestamping RX filters in
    SIOCSHWTSTAMP (git-fixes).
  o net: mvpp2: fix interrupt mask/unmask skip condition (git-fixes).
  o net: netcp: Fix an error message (git-fixes).
  o net: pch_gbe: Propagate error from devm_gpio_request_one() (git-fixes).
  o net: rose: fix netdev reference changes (git-fixes).
  o net: sock: tracing: Fix sock_exceed_buf_limit not to dereference stale
    pointer (git-fixes).
  o net: stmicro: handle clk_prepare() failure during init (git-fixes).
  o net: stmmac: Modify configuration method of EEE timers (git-fixes).
  o net: stmmac: Use resolved link config in mac_link_up() (git-fixes).
  o net: stmmac: disable clocks in stmmac_remove_config_dt() (git-fixes).
  o net: stmmac: dwmac1000: Fix extended MAC address registers definition
  o net: vmxnet3: fix possible NULL pointer dereference in vmxnet3_rq_cleanup()
  o net: vmxnet3: fix possible use-after-free bugs in vmxnet3_rq_alloc_rx_buf()
  o net: vmxnet3: remove multiple false checks in vmxnet3_ethtool.c (bsc#
  o net:emac/emac-mac: Fix a use after free in emac_mac_tx_buf_send
  o net:enetc: allocate CBD ring data memory using DMA coherent methods
  o net_sched: cls_route: disallow handle of 0 (bsc#1202393).
  o nfsd: fix use-after-free due to delegation race (git-fixes).
  o nvme: fix RCU hole that allowed for endless looping in multipath round
    robin (bsc#1202636).
  o objtool: Add support for intra-function calls (bsc#1202396).
  o objtool: Make handle_insn_ops() unconditional (bsc#1202396).
  o objtool: Remove INSN_STACK (bsc#1202396).
  o objtool: Rework allocating stack_ops on decode (bsc#1202396).
  o objtool: Support multiple stack_op per instruction (bsc#1202396).
  o ocfs2: drop acl cache for directories too (bsc#1191667).
  o ocfs2: fix crash when initialize filecheck kobj fails (bsc#1197920).
  o ocfs2: mount fails with buffer overflow in strlen (bsc#1197760).
  o octeontx2-af: fix infinite loop in unmapping NPC counter (git-fixes).
  o perf bench: Share some global variables to fix build with gcc 10
  o pinctrl/rockchip: fix gpio device creation (git-fixes).
  o pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map
  o pinctrl: qcom: msm8916: Allow CAMSS GP clocks to be muxed (git-fixes).
  o pinctrl: sunxi: Add I/O bias setting for H6 R-PIO (git-fixes).
  o platform/x86: pmc_atom: Fix SLP_TYPx bitfield mask (git-fixes).
  o powerpc/perf: Optimize clearing the pending PMI and remove WARN_ON for PMI
    check in power_pmu_disable (bsc#1156395).
  o powerpc/powernv/kvm: Use darn for H_RANDOM on Power9 (bsc#1065729).
  o powerpc/powernv: Avoid crashing if rng is NULL (bsc#1065729).
  o powerpc/powernv: Staticify functions without prototypes (bsc#1065729).
  o powerpc/powernv: delay rng platform device creation until later in boot
  o powerpc/powernv: rename remaining rng powernv_ functions to pnv_ (bsc#
  o powerpc/powernv: wire up rng during setup_arch (bsc#1065729).
  o powerpc/pseries: wire up rng during setup_arch() (bsc#1065729).
  o powerpc/xive: Fix refcount leak in xive_get_max_prio (git-fixess).
  o powerpc: Enable execve syscall exit tracepoint (bsc#1065729).
  o powerpc: define get_cycles macro for arch-override (bsc#1065729).
  o powerpc: powernv: kABI: add back powernv_get_random_long (bsc#1065729).
  o profiling: fix shift too large makes kernel panic (git-fixes).
  o qlcnic: Add null check after calling netdev_alloc_skb (git-fixes).
  o random: fix crash on multiple early calls to add_bootloader_randomness()
  o ratelimit: Fix data-races in ___ratelimit() (git-fixes).
  o reiserfs: fix handling of -EOPNOTSUPP in reiserfs_for_each_xattr (bsc#
  o remoteproc: qcom: q6v5-mss: add powerdomains to MSM8996 config (git-fixes).
  o remoteproc: qcom: wcnss: Fix handling of IRQs (git-fixes).
  o s390/crash: fix incorrect number of bytes to copy to user space
  o s390/crash: make copy_oldmem_page() return number of bytes copied
  o s390/mm: do not trigger write fault when vma does not allow VM_WRITE
  o s390/mm: fix 2KB pgtable release race (git-fixes).
  o s390/ptrace: pass invalid syscall numbers to tracing (bsc#1192594 LTC#
  o scsi: lpfc: Add warning notification period to CMF_SYNC_WQE (bsc#1203063).
  o scsi: lpfc: Check the return value of alloc_workqueue() (bsc#1203063).
  o scsi: lpfc: Copyright updates for patches (bsc#1203063).
  o scsi: lpfc: Fix null ndlp ptr dereference in abnormal exit path for GFT_ID
  o scsi: lpfc: Fix unsolicited FLOGI receive handling during PT2PT discovery
  o scsi: lpfc: Remove SANDiags related code (bsc#1203063).
  o scsi: lpfc: Rework MIB Rx Monitor debug info logic (bsc#1203063).
  o scsi: lpfc: Update lpfc version to (bsc#1203063).
  o selftests: futex: Use variable MAKE instead of make (git-fixes).
  o serial: 8250_dw: Store LSR into lsr_saved_flags in dw8250_tx_wait_empty()
  o serial: fsl_lpuart: RS485 RTS polariy is inverse (git-fixes).
  o serial: mvebu-uart: uart2 error bits clearing (git-fixes).
  o serial: tegra: Change lower tolerance baud rate limit for tegra20 and
    tegra30 (git-fixes).
  o silence nfscache allocation warnings with kvzalloc (git-fixes).
  o spi: Fix incorrect cs_setup delay handling (git-fixes).
  o spi: spi-rspi: Fix PIO fallback on RZ platforms (git-fixes).
  o spi: synquacer: Add missing clk_disable_unprepare() (git-fixes).
  o spmi: trace: fix stack-out-of-bound access in SPMI tracing functions
  o staging: rtl8712: fix use after free bugs (git-fixes).
  o tee: optee: Fix incorrect page free bug (git-fixes).
  o thermal: Fix NULL pointer dereferences in of_thermal_ functions
  o thermal: sysfs: Fix cooling_device_stats_setup() error code path
  o thunderbolt: Use the actual buffer in tb_async_error() (git-fixes).
  o tools/thermal: Fix possible path truncations (git-fixes).
  o tracing/histogram: Fix a potential memory leak for kstrdup() (git-fixes).
  o tracing/histograms: Fix memory leak problem (git-fixes).
  o tracing/probes: Have kprobes and uprobes use $COMM too (git-fixes).
  o tracing: Add ustring operation to filtering string pointers (git-fixes).
  o tty: serial: Fix refcount leak bug in ucc_uart.c (git-fixes).
  o tty: serial: lpuart: disable flow control while waiting for the transmit
    engine to complete (git-fixes).
  o tty: vt: initialize unicode screen buffer (git-fixes).
  o usb: dwc2: fix wrong order of phy_power_on and phy_init (git-fixes).
  o usb: dwc3: Switch to platform_get_irq_byname_optional() (git-fixes).
  o usb: dwc3: ep0: Fix delay status handling (git-fixes).
  o usb: dwc3: gadget: END_TRANSFER before CLEAR_STALL command (git-fixes).
  o usb: dwc3: gadget: Fix IN endpoint max packet size allocation (git-fixes).
  o usb: dwc3: gadget: Refactor dwc3_gadget_ep_dequeue (git-fixes).
  o usb: dwc3: gadget: Remove FS bInterval_m1 limitation (git-fixes).
  o usb: dwc3: gadget: Remove unnecessary checks (git-fixes).
  o usb: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback
  o usb: dwc3: gadget: Store resource index of start cmd (git-fixes).
  o usb: dwc3: qcom: fix missing optional irq warnings.
  o usb: gadget: mass_storage: Fix cdrom data transfers on MAC-OS (git-fixes).
  o usb: gadget: u_audio: fix race condition on endpoint stop (git-fixes).
  o usb: gadget: udc-xilinx: replace memcpy with memcpy_toio (git-fixes).
  o usb: gadget: uvc: call uvc uvcg_warn on completed status instead of
    uvcg_info (git-fixes).
  o usb: host: ohci-ppc-of: Fix refcount leak bug (git-fixes).
  o usb: renesas: Fix refcount leak bug (git-fixes).
  o usb: typec: altmodes/displayport: correct pin assignment for UFP
    receptacles (git-fixes).
  o usbnet: Fix linkwatch use-after-free on disconnect (git-fixes).
  o usbnet: smsc95xx: Fix deadlock on runtime resume (git-fixes).
  o vboxguest: Do not use devm for irq (git-fixes).
  o vfio/ccw: Remove UUID from s390 debug log (git-fixes).
  o video: fbdev: amba-clcd: Fix refcount leak bugs (git-fixes).
  o video: fbdev: arkfb: Check the size of screen before memset_io()
  o video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock()
  o video: fbdev: i740fb: Check the argument of i740_calc_vclk() (git-fixes).
  o video: fbdev: s3fb: Check the size of screen before memset_io()
  o video: fbdev: sis: fix typos in SiS_GetModeID() (git-fixes).
  o video: fbdev: vt8623fb: Check the size of screen before memset_io()
  o virtio_net: fix memory leak inside XPD_TX with mergeable (git-fixes).
  o vmxnet3: Implement ethtool's get_channels command (bsc#1200431).
  o vmxnet3: Record queue number to incoming packets (bsc#1200431).
  o vmxnet3: Remove useless DMA-32 fallback configuration (bsc#1200431).
  o vmxnet3: add command to set ring buffer sizes (bsc#1200431).
  o vmxnet3: add support for capability registers (bsc#1200431).
  o vmxnet3: add support for large passthrough BAR register (bsc#1200431).
  o vmxnet3: add support for out of order rx completion (bsc#1200431).
  o vmxnet3: disable overlay offloads if UPT device does not support (bsc#
  o vmxnet3: do not reschedule napi for rx processing (bsc#1200431).
  o vmxnet3: do not stop tx queues after netif_device_detach() (bsc#1200431).
  o vmxnet3: limit number of TXDs used for TSO packet (bsc#1200431).
  o vmxnet3: prepare for version 7 changes (bsc#1200431).
  o vmxnet3: switch from 'pci_' to 'dma_' API (bsc#1200431).
  o vmxnet3: update to version 7 (bsc#1200431).
  o vmxnet3: use ext1 field to indicate encapsulated packet (bsc#1200431).
  o vsock: Fix memory leak in vsock_connect() (git-fixes).
  o vsock: Set socket state back to SS_UNCONNECTED in vsock_connect_timeout()
  o watchdog: armada_37xx_wdt: check the return value of devm_ioremap() in
    armada_37xx_wdt_probe() (git-fixes).
  o wifi: cfg80211: debugfs: fix return type in ht40allow_map_read()
  o wifi: mac80211: Do not finalize CSA in IBSS mode if state is disconnected
  o wifi: mac80211_hwsim: add back erroneously removed cast (git-fixes).
  o wifi: mac80211_hwsim: fix race condition in pending packet (git-fixes).
  o wifi: mac80211_hwsim: use 32-bit skb cookie (git-fixes).
  o x86/olpc: fix 'logical not is only applied to the left hand side'
  o xfs: Fix assert failure in xfs_setattr_size() (git-fixes).
  o xfs: bunmapi has unnecessary AG lock ordering issues (git-fixes).
  o xfs: check sb_meta_uuid for dabuf buffer recovery (bsc#1202577).
  o xfs: make xfs_rtalloc_query_range input parameters const (git-fixes).
  o xfs: mark a data structure sick if there are cross-referencing errors
  o xfs: only reset incore inode health state flags when reclaiming an inode
  o xfs: prevent a UAF when log IO errors race with unmount (git-fixes).
  o xfs: use kmem_cache_free() for kmem_cache objects (git-fixes).
  o xprtrdma: Fix XDRBUF_SPARSE_PAGES support (git-fixes).

Special Instructions and Notes:

Please reboot the system after installing this update.

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  o openSUSE Leap Micro 5.2:
    zypper in -t patch openSUSE-Leap-Micro-5.2-2022-3264=1
  o openSUSE Leap 15.4:
    zypper in -t patch openSUSE-SLE-15.4-2022-3264=1
  o openSUSE Leap 15.3:
    zypper in -t patch openSUSE-SLE-15.3-2022-3264=1
  o SUSE Linux Enterprise Workstation Extension 15-SP3:
    zypper in -t patch SUSE-SLE-Product-WE-15-SP3-2022-3264=1
  o SUSE Linux Enterprise Module for Live Patching 15-SP3:
    zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2022-3264=1
    Please note that this is the initial kernel livepatch without fixes itself,
    this package is later updated by seperate standalone kernel livepatch
  o SUSE Linux Enterprise Module for Legacy Software 15-SP3:
    zypper in -t patch SUSE-SLE-Module-Legacy-15-SP3-2022-3264=1
  o SUSE Linux Enterprise Module for Development Tools 15-SP3:
    zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-3264=1
  o SUSE Linux Enterprise Module for Basesystem 15-SP3:
    zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-3264=1
  o SUSE Linux Enterprise Micro 5.2:
    zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-3264=1
  o SUSE Linux Enterprise Micro 5.1:
    zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-3264=1
  o SUSE Linux Enterprise High Availability 15-SP3:
    zypper in -t patch SUSE-SLE-Product-HA-15-SP3-2022-3264=1

Package List:

  o openSUSE Leap Micro 5.2 (aarch64 x86_64):
  o openSUSE Leap 15.4 (aarch64):
  o openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):
  o openSUSE Leap 15.3 (ppc64le x86_64):
  o openSUSE Leap 15.3 (aarch64 x86_64):
  o openSUSE Leap 15.3 (aarch64):
  o openSUSE Leap 15.3 (noarch):
  o openSUSE Leap 15.3 (s390x):
  o SUSE Linux Enterprise Workstation Extension 15-SP3 (x86_64):
  o SUSE Linux Enterprise Module for Live Patching 15-SP3 (ppc64le s390x
  o SUSE Linux Enterprise Module for Legacy Software 15-SP3 (aarch64 ppc64le
    s390x x86_64):
  o SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 ppc64le
    s390x x86_64):
  o SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 x86_64):
  o SUSE Linux Enterprise Module for Development Tools 15-SP3 (noarch):
  o SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x
  o SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 x86_64):
  o SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64):
  o SUSE Linux Enterprise Module for Basesystem 15-SP3 (noarch):
  o SUSE Linux Enterprise Module for Basesystem 15-SP3 (s390x):
  o SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64):
  o SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64):
  o SUSE Linux Enterprise High Availability 15-SP3 (aarch64 ppc64le s390x


  o https://www.suse.com/security/cve/CVE-2016-3695.html
  o https://www.suse.com/security/cve/CVE-2020-27784.html
  o https://www.suse.com/security/cve/CVE-2021-4155.html
  o https://www.suse.com/security/cve/CVE-2021-4203.html
  o https://www.suse.com/security/cve/CVE-2022-20368.html
  o https://www.suse.com/security/cve/CVE-2022-20369.html
  o https://www.suse.com/security/cve/CVE-2022-2588.html
  o https://www.suse.com/security/cve/CVE-2022-26373.html
  o https://www.suse.com/security/cve/CVE-2022-2663.html
  o https://www.suse.com/security/cve/CVE-2022-2905.html
  o https://www.suse.com/security/cve/CVE-2022-2977.html
  o https://www.suse.com/security/cve/CVE-2022-3028.html
  o https://www.suse.com/security/cve/CVE-2022-36879.html
  o https://www.suse.com/security/cve/CVE-2022-39188.html
  o https://www.suse.com/security/cve/CVE-2022-39190.html
  o https://bugzilla.suse.com/1023051
  o https://bugzilla.suse.com/1065729
  o https://bugzilla.suse.com/1156395
  o https://bugzilla.suse.com/1179722
  o https://bugzilla.suse.com/1179723
  o https://bugzilla.suse.com/1181862
  o https://bugzilla.suse.com/1191662
  o https://bugzilla.suse.com/1191667
  o https://bugzilla.suse.com/1191881
  o https://bugzilla.suse.com/1192594
  o https://bugzilla.suse.com/1192968
  o https://bugzilla.suse.com/1194272
  o https://bugzilla.suse.com/1194535
  o https://bugzilla.suse.com/1197158
  o https://bugzilla.suse.com/1197755
  o https://bugzilla.suse.com/1197756
  o https://bugzilla.suse.com/1197757
  o https://bugzilla.suse.com/1197760
  o https://bugzilla.suse.com/1197763
  o https://bugzilla.suse.com/1197920
  o https://bugzilla.suse.com/1198971
  o https://bugzilla.suse.com/1199291
  o https://bugzilla.suse.com/1200431
  o https://bugzilla.suse.com/1200845
  o https://bugzilla.suse.com/1200868
  o https://bugzilla.suse.com/1200869
  o https://bugzilla.suse.com/1200870
  o https://bugzilla.suse.com/1200871
  o https://bugzilla.suse.com/1200872
  o https://bugzilla.suse.com/1200873
  o https://bugzilla.suse.com/1201019
  o https://bugzilla.suse.com/1201420
  o https://bugzilla.suse.com/1201610
  o https://bugzilla.suse.com/1201705
  o https://bugzilla.suse.com/1201726
  o https://bugzilla.suse.com/1201948
  o https://bugzilla.suse.com/1202096
  o https://bugzilla.suse.com/1202097
  o https://bugzilla.suse.com/1202346
  o https://bugzilla.suse.com/1202347
  o https://bugzilla.suse.com/1202393
  o https://bugzilla.suse.com/1202396
  o https://bugzilla.suse.com/1202447
  o https://bugzilla.suse.com/1202564
  o https://bugzilla.suse.com/1202577
  o https://bugzilla.suse.com/1202636
  o https://bugzilla.suse.com/1202672
  o https://bugzilla.suse.com/1202701
  o https://bugzilla.suse.com/1202708
  o https://bugzilla.suse.com/1202709
  o https://bugzilla.suse.com/1202710
  o https://bugzilla.suse.com/1202711
  o https://bugzilla.suse.com/1202712
  o https://bugzilla.suse.com/1202713
  o https://bugzilla.suse.com/1202714
  o https://bugzilla.suse.com/1202715
  o https://bugzilla.suse.com/1202716
  o https://bugzilla.suse.com/1202717
  o https://bugzilla.suse.com/1202718
  o https://bugzilla.suse.com/1202720
  o https://bugzilla.suse.com/1202722
  o https://bugzilla.suse.com/1202745
  o https://bugzilla.suse.com/1202756
  o https://bugzilla.suse.com/1202810
  o https://bugzilla.suse.com/1202811
  o https://bugzilla.suse.com/1202860
  o https://bugzilla.suse.com/1202895
  o https://bugzilla.suse.com/1202898
  o https://bugzilla.suse.com/1203063
  o https://bugzilla.suse.com/1203098
  o https://bugzilla.suse.com/1203107
  o https://bugzilla.suse.com/1203116
  o https://bugzilla.suse.com/1203117
  o https://bugzilla.suse.com/1203135
  o https://bugzilla.suse.com/1203136
  o https://bugzilla.suse.com/1203137

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:


Australian Computer Emergency Response Team
The University of Queensland
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
Comment: https://auscert.org.au/gpg-key/