Security update for the Linux Kernel

2024-08-1314:08:42

Google

osv.dev

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

High

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743)
CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550).
CVE-2021-47219: scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() (bsc#1222824).
CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431).
CVE-2021-47600: dm btree remove: fix use after free in rebalance_children() (bsc#1226575).
CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611).
CVE-2024-38599: jffs2: prevent xattr node from overflowing the eraseblock (bsc#1226848).
CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1225866).
CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384).

The following non-security bugs were fixed:

af_unix: Do not use atomic ops for unix_sk(sk)->inflight (bsc#1223384).
af_unix: Replace BUG_ON() with WARN_ON_ONCE() (bsc#1223384).
af_unix: annote lockless accesses to unix_tot_inflight & gc_in_progress (bsc#1223384).
kvm: prevent kvm_clock time-warps (bsc#1197439).
net: unix: properly re-increment inflight counter of GC discarded candidates (bsc#1223384).