SUSE-SU-2024:1647-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-27389: Fixed pstore inode handling with d_invalidate() (bsc#1223705). - CVE-2024-27043: Fixed a use-after-free in edia/dvbdev in different places (bsc#1223824). - CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1219169). - CVE-2024-23848: Fixed media/cec for possible use-after-free in cec_queue_msg_fh (bsc#1219104). - CVE-2022-48662: Fixed a general protection fault (GPF) in i915_perf_open_ioctl (bsc#1223505). - CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223513). - CVE-2023-52616: Fixed unexpected pointer access in crypto/lib/mpi in mpi_ec_init (bsc#1221612). - CVE-2024-26816: Fixed relocations in .notes section when building with CONFIG_XEN_PV=y by ignoring them (bsc#1222624). - CVE-2021-47207: Fixed a null pointer dereference on pointer block in gus (bsc#1222790). - CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221299). - CVE-2024-26687: Fixed xen/events close evtchn after mapping cleanup (bsc#1222435). - CVE-2024-26601: Fixed ext4 buddy bitmap corruption via fast commit replay (bsc#1220342). - CVE-2024-26764: Fixed IOCB_AIO_RW check in fs/aio before the struct aio_kiocb conversion (bsc#1222721). - CVE-2024-26773: Fixed ext4 block allocation from corrupted group in ext4_mb_try_best_found() (bsc#1222618). - CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222726). - CVE-2024-26689: Fixed a use-after-free in encode_cap_msg() (bsc#1222503). - CVE-2024-26704: Fixed a double-free of blocks due to wrong extents moved_len in ext4 (bsc#1222422). - CVE-2023-52500: Fixed information leaking when processing OPC_INB_SET_CONTROLLER_CONFIG command (bsc#1220883). - CVE-2023-0160: Fixed deadlock flaw in BPF that could allow a local user to potentially crash the system (bsc#1209657). - CVE-2024-26642: Fixed the set of anonymous timeout flag in netfilter nf_tables (bsc#1221830). - CVE-2023-7192: Fixed a memory leak problem in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c (bsc#1218479). - CVE-2024-26614: Fixed the initialization of accept_queue's spinlocks (bsc#1221293). - CVE-2023-52607: Fixed NULL pointer dereference in pgtable_cache_add kasprintf() (bsc#1221061). - CVE-2023-7042: Fixed a null-pointer-dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (bsc#1218336). - CVE-2023-52476: Fixed possible unhandled page fault via perf sampling NMI during vsyscall (bsc#1220703). The following non-security bugs were fixed: - Call flush_delayed_fput() from nfsd main-loop (bsc#1223380). - ibmvfc: make 'max_sectors' a module option (bsc#1216223). - scsi: Update max_hw_sectors on rescan (bsc#1216223).
Affected Systems
- opensuse•kernel-rt&distro=openSUSE Leap Micro 5.3
< 5.14.21-150400.15.79.1
- opensuse•kernel-rt&distro=openSUSE Leap Micro 5.4
< 5.14.21-150400.15.79.1
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.15.79.1
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.15.79.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.15.79.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.15.79.1
References (187)
- https://www.suse.com/support/update/announcement/2024/suse-su-20241647-1/
- https://bugzilla.suse.com/1190576
- https://bugzilla.suse.com/1192145
- https://bugzilla.suse.com/1192354
- https://bugzilla.suse.com/1192837
- https://bugzilla.suse.com/1193629
- https://bugzilla.suse.com/1203906
- https://bugzilla.suse.com/1203935
- https://bugzilla.suse.com/1204614
- https://bugzilla.suse.com/1206881
- https://bugzilla.suse.com/1209657
- https://bugzilla.suse.com/1215221
- https://bugzilla.suse.com/1216223
- https://bugzilla.suse.com/1218336
- https://bugzilla.suse.com/1218479
- https://bugzilla.suse.com/1218562
- https://bugzilla.suse.com/1219104
- https://bugzilla.suse.com/1219126
- https://bugzilla.suse.com/1219169
- https://bugzilla.suse.com/1219170
- https://bugzilla.suse.com/1219264
- https://bugzilla.suse.com/1220342
- https://bugzilla.suse.com/1220703
- https://bugzilla.suse.com/1220761
- https://bugzilla.suse.com/1220883
- https://bugzilla.suse.com/1221044
- https://bugzilla.suse.com/1221061
- https://bugzilla.suse.com/1221088
- https://bugzilla.suse.com/1221293
- https://bugzilla.suse.com/1221299
- https://bugzilla.suse.com/1221612
- https://bugzilla.suse.com/1221830
- https://bugzilla.suse.com/1222117
- https://bugzilla.suse.com/1222422
- https://bugzilla.suse.com/1222430
- https://bugzilla.suse.com/1222435
- https://bugzilla.suse.com/1222482
- https://bugzilla.suse.com/1222503
- https://bugzilla.suse.com/1222536
- https://bugzilla.suse.com/1222559
- https://bugzilla.suse.com/1222585
- https://bugzilla.suse.com/1222618
- https://bugzilla.suse.com/1222624
- https://bugzilla.suse.com/1222660
- https://bugzilla.suse.com/1222662
- https://bugzilla.suse.com/1222664
- https://bugzilla.suse.com/1222666
- https://bugzilla.suse.com/1222671
- https://bugzilla.suse.com/1222703
- https://bugzilla.suse.com/1222704
- https://bugzilla.suse.com/1222706
- https://bugzilla.suse.com/1222709
- https://bugzilla.suse.com/1222721
- https://bugzilla.suse.com/1222726
- https://bugzilla.suse.com/1222773
- https://bugzilla.suse.com/1222776
- https://bugzilla.suse.com/1222785
- https://bugzilla.suse.com/1222787
- https://bugzilla.suse.com/1222790
- https://bugzilla.suse.com/1222791
- https://bugzilla.suse.com/1222792
- https://bugzilla.suse.com/1222796
- https://bugzilla.suse.com/1222824
- https://bugzilla.suse.com/1222829
- https://bugzilla.suse.com/1222832
- https://bugzilla.suse.com/1222836
- https://bugzilla.suse.com/1222838
- https://bugzilla.suse.com/1222866
- https://bugzilla.suse.com/1222867
- https://bugzilla.suse.com/1222869
- https://bugzilla.suse.com/1222876
- https://bugzilla.suse.com/1222878
- https://bugzilla.suse.com/1222879
- https://bugzilla.suse.com/1222881
- https://bugzilla.suse.com/1222883
- https://bugzilla.suse.com/1222888
- https://bugzilla.suse.com/1222894
- https://bugzilla.suse.com/1222901
- https://bugzilla.suse.com/1223016
- https://bugzilla.suse.com/1223187
- https://bugzilla.suse.com/1223380
- https://bugzilla.suse.com/1223474
- https://bugzilla.suse.com/1223475
- https://bugzilla.suse.com/1223477
- https://bugzilla.suse.com/1223479
- https://bugzilla.suse.com/1223482
- https://bugzilla.suse.com/1223484
- https://bugzilla.suse.com/1223487
- https://bugzilla.suse.com/1223503
- https://bugzilla.suse.com/1223505
- https://bugzilla.suse.com/1223509
- https://bugzilla.suse.com/1223513
- https://bugzilla.suse.com/1223516
- https://bugzilla.suse.com/1223517
- https://bugzilla.suse.com/1223518
- https://bugzilla.suse.com/1223519
- https://bugzilla.suse.com/1223522
- https://bugzilla.suse.com/1223523
- https://bugzilla.suse.com/1223705
- https://bugzilla.suse.com/1223824
- https://www.suse.com/security/cve/CVE-2021-47047
- https://www.suse.com/security/cve/CVE-2021-47181
- https://www.suse.com/security/cve/CVE-2021-47182
- https://www.suse.com/security/cve/CVE-2021-47183
- https://www.suse.com/security/cve/CVE-2021-47184
- https://www.suse.com/security/cve/CVE-2021-47185
- https://www.suse.com/security/cve/CVE-2021-47187
- https://www.suse.com/security/cve/CVE-2021-47188
- https://www.suse.com/security/cve/CVE-2021-47189
- https://www.suse.com/security/cve/CVE-2021-47191
- https://www.suse.com/security/cve/CVE-2021-47192
- https://www.suse.com/security/cve/CVE-2021-47193
- https://www.suse.com/security/cve/CVE-2021-47194
- https://www.suse.com/security/cve/CVE-2021-47195
- https://www.suse.com/security/cve/CVE-2021-47196
- https://www.suse.com/security/cve/CVE-2021-47197
- https://www.suse.com/security/cve/CVE-2021-47198
- https://www.suse.com/security/cve/CVE-2021-47199
- https://www.suse.com/security/cve/CVE-2021-47200
- https://www.suse.com/security/cve/CVE-2021-47201
- https://www.suse.com/security/cve/CVE-2021-47202
- https://www.suse.com/security/cve/CVE-2021-47203
- https://www.suse.com/security/cve/CVE-2021-47204
- https://www.suse.com/security/cve/CVE-2021-47205
- https://www.suse.com/security/cve/CVE-2021-47206
- https://www.suse.com/security/cve/CVE-2021-47207
- https://www.suse.com/security/cve/CVE-2021-47209
- https://www.suse.com/security/cve/CVE-2021-47210
- https://www.suse.com/security/cve/CVE-2021-47211
- https://www.suse.com/security/cve/CVE-2021-47212
- https://www.suse.com/security/cve/CVE-2021-47215
- https://www.suse.com/security/cve/CVE-2021-47216
- https://www.suse.com/security/cve/CVE-2021-47217
- https://www.suse.com/security/cve/CVE-2021-47218
- https://www.suse.com/security/cve/CVE-2021-47219
- https://www.suse.com/security/cve/CVE-2022-48631
- https://www.suse.com/security/cve/CVE-2022-48637
- https://www.suse.com/security/cve/CVE-2022-48638
- https://www.suse.com/security/cve/CVE-2022-48647
- https://www.suse.com/security/cve/CVE-2022-48648
- https://www.suse.com/security/cve/CVE-2022-48650
- https://www.suse.com/security/cve/CVE-2022-48651
- https://www.suse.com/security/cve/CVE-2022-48653
- https://www.suse.com/security/cve/CVE-2022-48654
- https://www.suse.com/security/cve/CVE-2022-48655
- https://www.suse.com/security/cve/CVE-2022-48656
- https://www.suse.com/security/cve/CVE-2022-48657
- https://www.suse.com/security/cve/CVE-2022-48660
- https://www.suse.com/security/cve/CVE-2022-48662
- https://www.suse.com/security/cve/CVE-2022-48663
- https://www.suse.com/security/cve/CVE-2022-48667
- https://www.suse.com/security/cve/CVE-2022-48668
- https://www.suse.com/security/cve/CVE-2023-0160
- https://www.suse.com/security/cve/CVE-2023-52476
- https://www.suse.com/security/cve/CVE-2023-52500
- https://www.suse.com/security/cve/CVE-2023-52590
- https://www.suse.com/security/cve/CVE-2023-52591
- https://www.suse.com/security/cve/CVE-2023-52607
- https://www.suse.com/security/cve/CVE-2023-52616
- https://www.suse.com/security/cve/CVE-2023-52628
- https://www.suse.com/security/cve/CVE-2023-7042
- https://www.suse.com/security/cve/CVE-2023-7192
- https://www.suse.com/security/cve/CVE-2024-0841
- https://www.suse.com/security/cve/CVE-2024-22099
- https://www.suse.com/security/cve/CVE-2024-23307
- https://www.suse.com/security/cve/CVE-2024-23848
- https://www.suse.com/security/cve/CVE-2024-23850
- https://www.suse.com/security/cve/CVE-2024-26601
- https://www.suse.com/security/cve/CVE-2024-26610
- https://www.suse.com/security/cve/CVE-2024-26614
- https://www.suse.com/security/cve/CVE-2024-26642
- https://www.suse.com/security/cve/CVE-2024-26687
- https://www.suse.com/security/cve/CVE-2024-26688
- https://www.suse.com/security/cve/CVE-2024-26689
- https://www.suse.com/security/cve/CVE-2024-26704
- https://www.suse.com/security/cve/CVE-2024-26727
- https://www.suse.com/security/cve/CVE-2024-26733
- https://www.suse.com/security/cve/CVE-2024-26739
- https://www.suse.com/security/cve/CVE-2024-26764
- https://www.suse.com/security/cve/CVE-2024-26766
- https://www.suse.com/security/cve/CVE-2024-26773
- https://www.suse.com/security/cve/CVE-2024-26792
- https://www.suse.com/security/cve/CVE-2024-26816
- https://www.suse.com/security/cve/CVE-2024-26898
- https://www.suse.com/security/cve/CVE-2024-26903
- https://www.suse.com/security/cve/CVE-2024-27043
- https://www.suse.com/security/cve/CVE-2024-27389