VDB
GCVE-VVD-MAGEIA-2022-212
GCVE-VVD-MAGEIA-2022-212
Advisory Published
This kernel update is based on upstream 5.15.43 and fixes at least the
following security issues:
A race condition in the perf subsystem allows for a local privilege
escalation. NOTE: Mageia kernels by default has disabled the perf usage
for unprivileged users, effectively rendering this vulnerability harmless
(CVE-2022-1729).
KVM: x86/mmu: fix NULL pointer dereference on guest INVPCID
(CVE-2022-1789).
Kernel could allow a remote attacker to bypass security restrictions,
caused by a lockdown break issue. By sending a specially-crafted request
using the kernel debugger, an attacker could exploit this vulnerability
to perform read and write access to kernel memory (CVE-2022-21499).
Other fixes in this update:
- ice: fix crash at allocation failure
For other upstream fixes, see the referenced changelogs.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | kernel | 0 (affected), 5.15.43-1.mga8 (unaffected) | — |
| Mageia | kmod-virtualbox | 0 (affected), 6.1.34-1.8.mga8 (unaffected) | — |
| Mageia | kmod-xtables-addons | 0 (affected), 3.20-1.4.mga8 (unaffected) | — |
Browse GCVE Records
100 records in the GCVE database · Updated April 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.