SUSE-SU-2024:4081-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1231893). - CVE-2022-48960: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() (bsc#1231979). - CVE-2022-48962: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (bsc#1232286). - CVE-2022-48967: NFC: nci: Bounds check struct nfc_target arrays (bsc#1232304). - CVE-2022-48988: memcg: Fix possible use-after-free in memcg_write_event_control() (bsc#1232069). - CVE-2022-48991: mm/khugepaged: fix collapse_pte_mapped_thp() to allow anon_vma (bsc#1232070). - CVE-2022-49003: nvme: fix SRCU protection of nvme_ns_head list (bsc#1232136). - CVE-2022-49014: net: tun: Fix use-after-free in tun_detach() (bsc#1231890). - CVE-2022-49015: net: hsr: Fix potential use-after-free (bsc#1231938). - CVE-2022-49023: wifi: cfg80211: fix buffer overflow in elem comparison (bsc#1231961). - CVE-2022-49025: net/mlx5e: Fix use-after-free when reverting termination table (bsc#1231960). - CVE-2024-36971: Fixed __dst_negative_advice() race (bsc#1226145). - CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429). - CVE-2024-45026: s390/dasd: fix error recovery leading to data corruption on ESE devices (bsc#1230454). - CVE-2024-46813: drm/amd/display: Check link_index before accessing dc->links (bsc#1231191). - CVE-2024-46814: drm/amd/display: Check msg_id before processing transcation (bsc#1231193). - CVE-2024-46815: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets (bsc#1231195). - CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197). - CVE-2024-46817: drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (bsc#1231200). - CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231203). - CVE-2024-46849: ASoC: meson: axg-card: fix 'use-after-free' (bsc#1231073). - CVE-2024-47668: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (bsc#1231502). - CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673). - CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987). - CVE-2024-47706: block, bfq: fix possible UAF for bfqq->bic with merge chain (bsc#1231942). - CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145). - CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231861). - CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424). - CVE-2024-49969: drm/amd/display: Fix index out of bounds in DCN30 color transformation (bsc#1232519). - CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383). - CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282). - CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432). - CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418). The following non-security bugs were fixed: - kernel-binary: generate and install compile_commands.json (bsc#1228971) - kernel-binary: vdso: Own module_dir - bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (bsc#1231375). - mkspec-dtb: add toplevel symlinks also on arm - net: mana: Fix the extra HZ in mana_hwc_send_request (bsc#1232033). - scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).
Affected Systems
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.1
< 5.3.18-150300.191.1
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.2
< 5.3.18-150300.191.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.1
< 5.3.18-150300.191.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.2
< 5.3.18-150300.191.1
References (112)
- https://www.suse.com/support/update/announcement/2024/suse-su-20244081-1/
- https://bugzilla.suse.com/1195775
- https://bugzilla.suse.com/1204171
- https://bugzilla.suse.com/1205796
- https://bugzilla.suse.com/1209290
- https://bugzilla.suse.com/1216223
- https://bugzilla.suse.com/1218562
- https://bugzilla.suse.com/1219125
- https://bugzilla.suse.com/1223384
- https://bugzilla.suse.com/1223524
- https://bugzilla.suse.com/1223824
- https://bugzilla.suse.com/1225189
- https://bugzilla.suse.com/1225336
- https://bugzilla.suse.com/1225611
- https://bugzilla.suse.com/1226145
- https://bugzilla.suse.com/1226211
- https://bugzilla.suse.com/1226212
- https://bugzilla.suse.com/1228743
- https://bugzilla.suse.com/1229042
- https://bugzilla.suse.com/1229454
- https://bugzilla.suse.com/1229456
- https://bugzilla.suse.com/1230429
- https://bugzilla.suse.com/1230454
- https://bugzilla.suse.com/1231073
- https://bugzilla.suse.com/1231191
- https://bugzilla.suse.com/1231193
- https://bugzilla.suse.com/1231195
- https://bugzilla.suse.com/1231197
- https://bugzilla.suse.com/1231200
- https://bugzilla.suse.com/1231203
- https://bugzilla.suse.com/1231293
- https://bugzilla.suse.com/1231375
- https://bugzilla.suse.com/1231502
- https://bugzilla.suse.com/1231673
- https://bugzilla.suse.com/1231861
- https://bugzilla.suse.com/1231887
- https://bugzilla.suse.com/1231890
- https://bugzilla.suse.com/1231893
- https://bugzilla.suse.com/1231895
- https://bugzilla.suse.com/1231936
- https://bugzilla.suse.com/1231938
- https://bugzilla.suse.com/1231942
- https://bugzilla.suse.com/1231960
- https://bugzilla.suse.com/1231961
- https://bugzilla.suse.com/1231979
- https://bugzilla.suse.com/1231987
- https://bugzilla.suse.com/1231988
- https://bugzilla.suse.com/1232033
- https://bugzilla.suse.com/1232069
- https://bugzilla.suse.com/1232070
- https://bugzilla.suse.com/1232097
- https://bugzilla.suse.com/1232136
- https://bugzilla.suse.com/1232145
- https://bugzilla.suse.com/1232262
- https://bugzilla.suse.com/1232282
- https://bugzilla.suse.com/1232286
- https://bugzilla.suse.com/1232304
- https://bugzilla.suse.com/1232383
- https://bugzilla.suse.com/1232418
- https://bugzilla.suse.com/1232424
- https://bugzilla.suse.com/1232432
- https://bugzilla.suse.com/1232519
- https://www.suse.com/security/cve/CVE-2021-47416
- https://www.suse.com/security/cve/CVE-2022-3435
- https://www.suse.com/security/cve/CVE-2022-45934
- https://www.suse.com/security/cve/CVE-2022-48664
- https://www.suse.com/security/cve/CVE-2022-48947
- https://www.suse.com/security/cve/CVE-2022-48956
- https://www.suse.com/security/cve/CVE-2022-48960
- https://www.suse.com/security/cve/CVE-2022-48962
- https://www.suse.com/security/cve/CVE-2022-48967
- https://www.suse.com/security/cve/CVE-2022-48970
- https://www.suse.com/security/cve/CVE-2022-48988
- https://www.suse.com/security/cve/CVE-2022-48991
- https://www.suse.com/security/cve/CVE-2022-48999
- https://www.suse.com/security/cve/CVE-2022-49003
- https://www.suse.com/security/cve/CVE-2022-49014
- https://www.suse.com/security/cve/CVE-2022-49015
- https://www.suse.com/security/cve/CVE-2022-49023
- https://www.suse.com/security/cve/CVE-2022-49025
- https://www.suse.com/security/cve/CVE-2023-28327
- https://www.suse.com/security/cve/CVE-2023-46343
- https://www.suse.com/security/cve/CVE-2023-52881
- https://www.suse.com/security/cve/CVE-2023-52919
- https://www.suse.com/security/cve/CVE-2023-6270
- https://www.suse.com/security/cve/CVE-2024-27043
- https://www.suse.com/security/cve/CVE-2024-36971
- https://www.suse.com/security/cve/CVE-2024-42145
- https://www.suse.com/security/cve/CVE-2024-44947
- https://www.suse.com/security/cve/CVE-2024-45016
- https://www.suse.com/security/cve/CVE-2024-45026
- https://www.suse.com/security/cve/CVE-2024-46813
- https://www.suse.com/security/cve/CVE-2024-46814
- https://www.suse.com/security/cve/CVE-2024-46815
- https://www.suse.com/security/cve/CVE-2024-46816
- https://www.suse.com/security/cve/CVE-2024-46817
- https://www.suse.com/security/cve/CVE-2024-46818
- https://www.suse.com/security/cve/CVE-2024-46849
- https://www.suse.com/security/cve/CVE-2024-47668
- https://www.suse.com/security/cve/CVE-2024-47674
- https://www.suse.com/security/cve/CVE-2024-47684
- https://www.suse.com/security/cve/CVE-2024-47706
- https://www.suse.com/security/cve/CVE-2024-47747
- https://www.suse.com/security/cve/CVE-2024-49860
- https://www.suse.com/security/cve/CVE-2024-49867
- https://www.suse.com/security/cve/CVE-2024-49936
- https://www.suse.com/security/cve/CVE-2024-49969
- https://www.suse.com/security/cve/CVE-2024-49974
- https://www.suse.com/security/cve/CVE-2024-49982
- https://www.suse.com/security/cve/CVE-2024-49991
- https://www.suse.com/security/cve/CVE-2024-49995
- https://www.suse.com/security/cve/CVE-2024-50047