SUSE-SU-2024:3547-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-48911: kabi: add __nf_queue_get_refs() for kabi compliance. (bsc#1229633). - CVE-2022-48923: btrfs: prevent copying too big compressed lzo segment (bsc#1229662) - CVE-2024-41087: Fix double free on error (bsc#1228466). - CVE-2024-42301: Fix the array out-of-bounds risk (bsc#1229407). - CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015). - CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434). - CVE-2024-46674: usb: dwc3: st: fix probed platform device ref count on probe error path (bsc#1230507). The following non-security bugs were fixed: - blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600). - blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600). - kabi: add __nf_queue_get_refs() for kabi compliance. - scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223). - scsi: smartpqi: Expose SAS address for SATA drives (bsc#1223958). - SUNRPC: avoid soft lockup when transmitting UDP to reachable server (bsc#1225272 bsc#1231016).
Affected Systems
- suse•kernel-64kb&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.136.1
- suse•kernel-64kb&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-64kb&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.136.1.150400.24.66.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.136.1.150400.24.66.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.24.136.1.150400.24.66.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.24.136.1.150400.24.66.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.136.1.150400.24.66.1
- suse•kernel-default-base&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.136.1.150400.24.66.1
- suse•kernel-default-base&distro=SUSE Manager Proxy 4.3
< 5.14.21-150400.24.136.1.150400.24.66.1
- suse•kernel-default-base&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.136.1.150400.24.66.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP4
< 5.14.21-150400.24.136.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.136.1
- suse•kernel-default&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-default&distro=SUSE Linux Enterprise Live Patching 15 SP4
< 5.14.21-150400.24.136.1
- suse•kernel-default&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.24.136.1
- suse•kernel-default&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.24.136.1
- suse•kernel-default&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-default&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.136.1
- suse•kernel-default&distro=SUSE Manager Proxy 4.3
< 5.14.21-150400.24.136.1
- suse•kernel-default&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.136.1
- suse•kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.136.1
- suse•kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-docs&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.136.1
- suse•kernel-livepatch-SLE15-SP4_Update_32&distro=SUSE Linux Enterprise Live Patching 15 SP4
< 1-150400.9.3.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.136.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-obs-build&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.136.1
- suse•kernel-source&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.136.1
- suse•kernel-source&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-source&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-source&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.136.1
- suse•kernel-source&distro=SUSE Manager Proxy 4.3
< 5.14.21-150400.24.136.1
- suse•kernel-source&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.136.1
- suse•kernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
< 5.14.21-150400.24.136.1
- suse•kernel-syms&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-syms&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-syms&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4
< 5.14.21-150400.24.136.1
- suse•kernel-syms&distro=SUSE Manager Proxy 4.3
< 5.14.21-150400.24.136.1
- suse•kernel-syms&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.136.1
- suse•kernel-zfcpdump&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
< 5.14.21-150400.24.136.1
- suse•kernel-zfcpdump&distro=SUSE Manager Server 4.3
< 5.14.21-150400.24.136.1
References (27)
- https://www.suse.com/support/update/announcement/2024/suse-su-20243547-1/
- https://bugzilla.suse.com/1216223
- https://bugzilla.suse.com/1223600
- https://bugzilla.suse.com/1223958
- https://bugzilla.suse.com/1225272
- https://bugzilla.suse.com/1227487
- https://bugzilla.suse.com/1228466
- https://bugzilla.suse.com/1229407
- https://bugzilla.suse.com/1229633
- https://bugzilla.suse.com/1229662
- https://bugzilla.suse.com/1229947
- https://bugzilla.suse.com/1230015
- https://bugzilla.suse.com/1230398
- https://bugzilla.suse.com/1230434
- https://bugzilla.suse.com/1230507
- https://bugzilla.suse.com/1230767
- https://bugzilla.suse.com/1231016
- https://www.suse.com/security/cve/CVE-2022-48911
- https://www.suse.com/security/cve/CVE-2022-48923
- https://www.suse.com/security/cve/CVE-2022-48944
- https://www.suse.com/security/cve/CVE-2022-48945
- https://www.suse.com/security/cve/CVE-2024-41087
- https://www.suse.com/security/cve/CVE-2024-42301
- https://www.suse.com/security/cve/CVE-2024-44946
- https://www.suse.com/security/cve/CVE-2024-45021
- https://www.suse.com/security/cve/CVE-2024-46674
- https://www.suse.com/security/cve/CVE-2024-46774