SUSE-SU-2023:0778-1

Advisory lineage Upstream: 11 Downstream: 0
Published: 16 Mar 2023, 16:53
Last modified:04 Feb 2026, 03:11

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

16 Mar 2023, 16:53
Published
Vulnerability first disclosed
04 Feb 2026, 03:11
Last Modified
Vulnerability information updated

Description

Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. - CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver (bsc#1203332). - CVE-2022-38096: Fixed NULL-ptr deref in vmw_cmd_dx_define_query() (bsc#1203331). - CVE-2023-0045: Fixed missing Flush IBP in ib_prctl_set (bsc#1207773). - CVE-2023-0590: Fixed race condition in qdisc_graft() (bsc#1207795). - CVE-2023-0597: Fixed lack of randomization of per-cpu entry area in x86/mm (bsc#1207845). - CVE-2023-1118: Fixed a use-after-free bugs caused by ene_tx_irqsim() in media/rc (bsc#1208837). - CVE-2023-22995: Fixed lacks of certain platform_device_put and kfree in drivers/usb/dwc3/dwc3-qcom.c (bsc#1208741). - CVE-2023-23000: Fixed return value of tegra_xusb_find_port_node function phy/tegra (bsc#1208816). - CVE-2023-23006: Fixed NULL vs IS_ERR checking in dr_domain_init_resources (bsc#120884). - CVE-2023-23559: Fixed integer overflow in rndis_wlan that leads to a buffer overflow (bsc#1207051). - CVE-2023-26545: Fixed double free in net/mpls/af_mpls.c upon an allocation failure (bsc#1208700). The following non-security bugs were fixed: - cifs: fix use-after-free caused by invalid pointer `hostname` (bsc#1208971). - genirq: Provide new interfaces for affinity hints (bsc#1208153). - mm/slub: fix panic in slab_alloc_node() (bsc#1208023). - module: Do not wait for GOING modules (bsc#1196058, bsc#1186449, bsc#1204356, bsc#1204662). - net: mana: Assign interrupts to CPUs based on NUMA nodes (bsc#1208153). - net: mana: Fix IRQ name - add PCI and queue number (bsc#1207875). - net: mana: Fix accessing freed irq affinity_hint (bsc#1208153). - nfsd: fix use-after-free due to delegation race (bsc#1208813). - rdma/core: Fix ib block iterator counter overflow (bsc#1207878). - vmxnet3: move rss code block under eop descriptor (bsc#1208212).

Affected Systems

  • susekernel-default-base&distro=SUSE Enterprise Storage 7

    < 5.3.18-150200.24.145.1.150200.9.69.1

  • susekernel-default-base&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

    < 5.3.18-150200.24.145.1.150200.9.69.1

  • susekernel-default-base&distro=SUSE Linux Enterprise Server 15 SP2-LTSS

    < 5.3.18-150200.24.145.1.150200.9.69.1

  • susekernel-default-base&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

    < 5.3.18-150200.24.145.1.150200.9.69.1

  • susekernel-default&distro=SUSE Enterprise Storage 7

    < 5.3.18-150200.24.145.1

  • susekernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP2

    < 5.3.18-150200.24.145.1

  • susekernel-default&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-default&distro=SUSE Linux Enterprise Live Patching 15 SP2

    < 5.3.18-150200.24.145.1

  • susekernel-default&distro=SUSE Linux Enterprise Server 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

    < 5.3.18-150200.24.145.1

  • susekernel-docs&distro=SUSE Enterprise Storage 7

    < 5.3.18-150200.24.145.1

  • susekernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-docs&distro=SUSE Linux Enterprise Server 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

    < 5.3.18-150200.24.145.1

  • susekernel-livepatch-SLE15-SP2_Update_34&distro=SUSE Linux Enterprise Live Patching 15 SP2

    < 1-150200.5.3.1

  • susekernel-obs-build&distro=SUSE Enterprise Storage 7

    < 5.3.18-150200.24.145.1

  • susekernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-obs-build&distro=SUSE Linux Enterprise Server 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-obs-build&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

    < 5.3.18-150200.24.145.1

  • susekernel-preempt&distro=SUSE Enterprise Storage 7

    < 5.3.18-150200.24.145.1

  • susekernel-preempt&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-preempt&distro=SUSE Linux Enterprise Server 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-preempt&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

    < 5.3.18-150200.24.145.1

  • susekernel-source&distro=SUSE Enterprise Storage 7

    < 5.3.18-150200.24.145.1

  • susekernel-source&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-source&distro=SUSE Linux Enterprise Server 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

    < 5.3.18-150200.24.145.1

  • susekernel-syms&distro=SUSE Enterprise Storage 7

    < 5.3.18-150200.24.145.1

  • susekernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-syms&distro=SUSE Linux Enterprise Server 15 SP2-LTSS

    < 5.3.18-150200.24.145.1

  • susekernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

    < 5.3.18-150200.24.145.1

References (33)