SUSE-SU-2024:1650-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-26840: Fixed a memory leak in cachefiles_add_cache() (bsc#1222976). - CVE-2021-47113: Abort btrfs rename_exchange if we fail to insert the second ref (bsc#1221543). - CVE-2021-47131: Fixed a use-after-free after the TLS device goes down and up (bsc#1221545). - CVE-2024-26852: Fixed net/ipv6 to avoid possible UAF in ip6_route_mpath_notify() (bsc#1223057). - CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220513). - CVE-2024-26862: Fixed packet annotate data-races around ignore_outgoing (bsc#1223111). - CVE-2024-0639: Fixed a denial-of-service vulnerability due to a deadlock found in sctp_auto_asconf_init in net/sctp/socket.c (bsc#1218917). - CVE-2024-27043: Fixed a use-after-free in edia/dvbdev in different places (bsc#1223824). - CVE-2022-48631: Fixed a bug in ext4, when parsing extents where eh_entries == 0 and eh_depth > 0 (bsc#1223475). - CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1219169). - CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223513). - CVE-2024-26816: Fixed relocations in .notes section when building with CONFIG_XEN_PV=y by ignoring them (bsc#1222624). - CVE-2024-26906: Disallowed vsyscall page read for copy_from_kernel_nofault() (bsc#1223202). - CVE-2024-26689: Fixed a use-after-free in encode_cap_msg() (bsc#1222503). - CVE-2021-47041: Don't set sk_user_data without write_lock (bsc#1220755). - CVE-2021-47074: Fixed memory leak in nvme_loop_create_ctrl() (bsc#1220854). - CVE-2024-26744: Fixed null pointer dereference in srpt_service_guid parameter in rdma/srpt (bsc#1222449). The following non-security bugs were fixed: - net/tls: Remove the context from the list in tls_device_down (bsc#1221545). - tls: Fix context leak on tls_device_down (bsc#1221545).
Affected Systems
- suse•kernel-default-base&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
< 5.3.18-150200.24.191.1.150200.9.97.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Server 15 SP2-LTSS
< 5.3.18-150200.24.191.1.150200.9.97.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2
< 5.3.18-150200.24.191.1.150200.9.97.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP2
< 5.3.18-150200.24.191.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-default&distro=SUSE Linux Enterprise Live Patching 15 SP2
< 5.3.18-150200.24.191.1
- suse•kernel-default&distro=SUSE Linux Enterprise Server 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2
< 5.3.18-150200.24.191.1
- suse•kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-docs&distro=SUSE Linux Enterprise Server 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2
< 5.3.18-150200.24.191.1
- suse•kernel-livepatch-SLE15-SP2_Update_48&distro=SUSE Linux Enterprise Live Patching 15 SP2
< 1-150200.5.3.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise Server 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2
< 5.3.18-150200.24.191.1
- suse•kernel-preempt&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-preempt&distro=SUSE Linux Enterprise Server 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-preempt&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2
< 5.3.18-150200.24.191.1
- suse•kernel-source&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-source&distro=SUSE Linux Enterprise Server 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2
< 5.3.18-150200.24.191.1
- suse•kernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-syms&distro=SUSE Linux Enterprise Server 15 SP2-LTSS
< 5.3.18-150200.24.191.1
- suse•kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2
< 5.3.18-150200.24.191.1
References (78)
- https://www.suse.com/support/update/announcement/2024/suse-su-20241650-1/
- https://bugzilla.suse.com/1190576
- https://bugzilla.suse.com/1192145
- https://bugzilla.suse.com/1204614
- https://bugzilla.suse.com/1211592
- https://bugzilla.suse.com/1218562
- https://bugzilla.suse.com/1218917
- https://bugzilla.suse.com/1219169
- https://bugzilla.suse.com/1219170
- https://bugzilla.suse.com/1219264
- https://bugzilla.suse.com/1220513
- https://bugzilla.suse.com/1220755
- https://bugzilla.suse.com/1220854
- https://bugzilla.suse.com/1221543
- https://bugzilla.suse.com/1221545
- https://bugzilla.suse.com/1222449
- https://bugzilla.suse.com/1222482
- https://bugzilla.suse.com/1222503
- https://bugzilla.suse.com/1222559
- https://bugzilla.suse.com/1222585
- https://bugzilla.suse.com/1222624
- https://bugzilla.suse.com/1222666
- https://bugzilla.suse.com/1222669
- https://bugzilla.suse.com/1222709
- https://bugzilla.suse.com/1222790
- https://bugzilla.suse.com/1222792
- https://bugzilla.suse.com/1222829
- https://bugzilla.suse.com/1222881
- https://bugzilla.suse.com/1222883
- https://bugzilla.suse.com/1222894
- https://bugzilla.suse.com/1222976
- https://bugzilla.suse.com/1223016
- https://bugzilla.suse.com/1223057
- https://bugzilla.suse.com/1223111
- https://bugzilla.suse.com/1223187
- https://bugzilla.suse.com/1223202
- https://bugzilla.suse.com/1223475
- https://bugzilla.suse.com/1223482
- https://bugzilla.suse.com/1223513
- https://bugzilla.suse.com/1223824
- https://bugzilla.suse.com/1223952
- https://www.suse.com/security/cve/CVE-2021-46955
- https://www.suse.com/security/cve/CVE-2021-47041
- https://www.suse.com/security/cve/CVE-2021-47074
- https://www.suse.com/security/cve/CVE-2021-47113
- https://www.suse.com/security/cve/CVE-2021-47131
- https://www.suse.com/security/cve/CVE-2021-47184
- https://www.suse.com/security/cve/CVE-2021-47185
- https://www.suse.com/security/cve/CVE-2021-47194
- https://www.suse.com/security/cve/CVE-2021-47198
- https://www.suse.com/security/cve/CVE-2021-47201
- https://www.suse.com/security/cve/CVE-2021-47203
- https://www.suse.com/security/cve/CVE-2021-47206
- https://www.suse.com/security/cve/CVE-2021-47207
- https://www.suse.com/security/cve/CVE-2021-47212
- https://www.suse.com/security/cve/CVE-2022-48631
- https://www.suse.com/security/cve/CVE-2022-48651
- https://www.suse.com/security/cve/CVE-2022-48654
- https://www.suse.com/security/cve/CVE-2022-48687
- https://www.suse.com/security/cve/CVE-2023-2860
- https://www.suse.com/security/cve/CVE-2023-6270
- https://www.suse.com/security/cve/CVE-2024-0639
- https://www.suse.com/security/cve/CVE-2024-0841
- https://www.suse.com/security/cve/CVE-2024-22099
- https://www.suse.com/security/cve/CVE-2024-23307
- https://www.suse.com/security/cve/CVE-2024-26688
- https://www.suse.com/security/cve/CVE-2024-26689
- https://www.suse.com/security/cve/CVE-2024-26733
- https://www.suse.com/security/cve/CVE-2024-26739
- https://www.suse.com/security/cve/CVE-2024-26744
- https://www.suse.com/security/cve/CVE-2024-26816
- https://www.suse.com/security/cve/CVE-2024-26840
- https://www.suse.com/security/cve/CVE-2024-26852
- https://www.suse.com/security/cve/CVE-2024-26862
- https://www.suse.com/security/cve/CVE-2024-26898
- https://www.suse.com/security/cve/CVE-2024-26903
- https://www.suse.com/security/cve/CVE-2024-26906
- https://www.suse.com/security/cve/CVE-2024-27043