GoogleOSV:SUSE-SU-2024:3227-1Security update for the Linux Kernel
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-41062: bluetooth/l2cap: sync sock recv cb and release (bsc#1228576).
- CVE-2024-44947: Initialize beyond-EOF page contents before setting uptodate (bsc#1229454).
- CVE-2024-43883: Do not drop references before new references are gained (bsc#1229707).
- CVE-2024-43861: Fix memory leak for not ip packets (bsc#1229500).
- CVE-2023-52489: mm/sparsemem: fix race in accessing memory_section->usage (bsc#1221326).
- CVE-2024-44938: Fix shift-out-of-bounds in dbDiscardAG (bsc#1229792).
- CVE-2024-41087: Fix double free on error (CVE-2024-41087,bsc#1228466).
- CVE-2024-43882: Fixed ToCToU between perm check and set-uid/gid usage. (bsc#1229503)
- CVE-2022-48935: Fixed an unregister flowtable hooks on netns exit (bsc#1229619)
- CVE-2022-48912: Fix use-after-free in __nf_register_net_hook() (bsc#1229641)
- CVE-2024-42271: Fixed a use after free in iucv_sock_close(). (bsc#1229400)
- CVE-2024-42232: Fixed a race between delayed_work() and ceph_monc_stop(). (bsc#1228959)
- CVE-2024-40910: Fix refcount imbalance on inbound connections (bsc#1227832).
- CVE-2024-41009: bpf: Fix overrunning reservations in ringbuf (bsc#1228020).
The following non-security bugs were fixed:
- Bluetooth: L2CAP: Fix deadlock (git-fixes).
- mm, kmsan: fix infinite recursion due to RCU critical section (git-fixes).
- mm: prevent derefencing NULL ptr in pfn_section_valid() (git-fixes).
- nvme_core: scan namespaces asynchronously (bsc#1224105).
References
bugzilla.suse.com/1193629
bugzilla.suse.com/1194111
bugzilla.suse.com/1194765
bugzilla.suse.com/1196261
bugzilla.suse.com/1196516
bugzilla.suse.com/1196894
bugzilla.suse.com/1198017
bugzilla.suse.com/1203360
bugzilla.suse.com/1206006
bugzilla.suse.com/1206258
bugzilla.suse.com/1207158
bugzilla.suse.com/1216834
bugzilla.suse.com/1221326
bugzilla.suse.com/1221645
bugzilla.suse.com/1223191
bugzilla.suse.com/1224105
bugzilla.suse.com/1227832
bugzilla.suse.com/1228020
bugzilla.suse.com/1228466
bugzilla.suse.com/1228516
bugzilla.suse.com/1228576
bugzilla.suse.com/1228718
bugzilla.suse.com/1228801
bugzilla.suse.com/1228959
bugzilla.suse.com/1229042
bugzilla.suse.com/1229292
bugzilla.suse.com/1229400
bugzilla.suse.com/1229454
bugzilla.suse.com/1229500
bugzilla.suse.com/1229503
bugzilla.suse.com/1229506
bugzilla.suse.com/1229507
bugzilla.suse.com/1229508
bugzilla.suse.com/1229509
bugzilla.suse.com/1229510
bugzilla.suse.com/1229512
bugzilla.suse.com/1229516
bugzilla.suse.com/1229522
bugzilla.suse.com/1229526
bugzilla.suse.com/1229528
bugzilla.suse.com/1229531
bugzilla.suse.com/1229533
bugzilla.suse.com/1229535
bugzilla.suse.com/1229536
bugzilla.suse.com/1229537
bugzilla.suse.com/1229540
bugzilla.suse.com/1229544
bugzilla.suse.com/1229554
bugzilla.suse.com/1229557
bugzilla.suse.com/1229565
bugzilla.suse.com/1229566
bugzilla.suse.com/1229568
bugzilla.suse.com/1229581
bugzilla.suse.com/1229598
bugzilla.suse.com/1229603
bugzilla.suse.com/1229604
bugzilla.suse.com/1229608
bugzilla.suse.com/1229611
bugzilla.suse.com/1229612
bugzilla.suse.com/1229613
bugzilla.suse.com/1229614
bugzilla.suse.com/1229617
bugzilla.suse.com/1229619
bugzilla.suse.com/1229620
bugzilla.suse.com/1229622
bugzilla.suse.com/1229623
bugzilla.suse.com/1229624
bugzilla.suse.com/1229625
bugzilla.suse.com/1229626
bugzilla.suse.com/1229628
bugzilla.suse.com/1229629
bugzilla.suse.com/1229630
bugzilla.suse.com/1229631
bugzilla.suse.com/1229635
bugzilla.suse.com/1229636
bugzilla.suse.com/1229637
bugzilla.suse.com/1229638
bugzilla.suse.com/1229639
bugzilla.suse.com/1229641
bugzilla.suse.com/1229642
bugzilla.suse.com/1229643
bugzilla.suse.com/1229645
bugzilla.suse.com/1229657
bugzilla.suse.com/1229664
bugzilla.suse.com/1229707
bugzilla.suse.com/1229792
www.suse.com/security/cve/CVE-2021-4441
www.suse.com/security/cve/CVE-2022-48868
www.suse.com/security/cve/CVE-2022-48869
www.suse.com/security/cve/CVE-2022-48870
www.suse.com/security/cve/CVE-2022-48871
www.suse.com/security/cve/CVE-2022-48872
www.suse.com/security/cve/CVE-2022-48873
www.suse.com/security/cve/CVE-2022-48875
www.suse.com/security/cve/CVE-2022-48878
www.suse.com/security/cve/CVE-2022-48880
www.suse.com/security/cve/CVE-2022-48890
www.suse.com/security/cve/CVE-2022-48891
www.suse.com/security/cve/CVE-2022-48896
www.suse.com/security/cve/CVE-2022-48898
www.suse.com/security/cve/CVE-2022-48899
www.suse.com/security/cve/CVE-2022-48903
www.suse.com/security/cve/CVE-2022-48904
www.suse.com/security/cve/CVE-2022-48905
www.suse.com/security/cve/CVE-2022-48907
www.suse.com/security/cve/CVE-2022-48909
www.suse.com/security/cve/CVE-2022-48912
www.suse.com/security/cve/CVE-2022-48913
www.suse.com/security/cve/CVE-2022-48914
www.suse.com/security/cve/CVE-2022-48915
www.suse.com/security/cve/CVE-2022-48916
www.suse.com/security/cve/CVE-2022-48917
www.suse.com/security/cve/CVE-2022-48918
www.suse.com/security/cve/CVE-2022-48919
www.suse.com/security/cve/CVE-2022-48921
www.suse.com/security/cve/CVE-2022-48924
www.suse.com/security/cve/CVE-2022-48925
www.suse.com/security/cve/CVE-2022-48926
www.suse.com/security/cve/CVE-2022-48927
www.suse.com/security/cve/CVE-2022-48928
www.suse.com/security/cve/CVE-2022-48929
www.suse.com/security/cve/CVE-2022-48930
www.suse.com/security/cve/CVE-2022-48931
www.suse.com/security/cve/CVE-2022-48932
www.suse.com/security/cve/CVE-2022-48934
www.suse.com/security/cve/CVE-2022-48935
www.suse.com/security/cve/CVE-2022-48937
www.suse.com/security/cve/CVE-2022-48938
www.suse.com/security/cve/CVE-2022-48941
www.suse.com/security/cve/CVE-2022-48942
www.suse.com/security/cve/CVE-2022-48943
www.suse.com/security/cve/CVE-2023-52489
www.suse.com/security/cve/CVE-2023-52893
www.suse.com/security/cve/CVE-2023-52894
www.suse.com/security/cve/CVE-2023-52896
www.suse.com/security/cve/CVE-2023-52898
www.suse.com/security/cve/CVE-2023-52900
www.suse.com/security/cve/CVE-2023-52901
www.suse.com/security/cve/CVE-2023-52905
www.suse.com/security/cve/CVE-2023-52907
www.suse.com/security/cve/CVE-2023-52911
www.suse.com/security/cve/CVE-2024-40910
www.suse.com/security/cve/CVE-2024-41009
www.suse.com/security/cve/CVE-2024-41062
www.suse.com/security/cve/CVE-2024-41087
www.suse.com/security/cve/CVE-2024-42077
www.suse.com/security/cve/CVE-2024-42126
www.suse.com/security/cve/CVE-2024-42232
www.suse.com/security/cve/CVE-2024-42271
www.suse.com/security/cve/CVE-2024-43853
www.suse.com/security/cve/CVE-2024-43861
www.suse.com/security/cve/CVE-2024-43882
www.suse.com/security/cve/CVE-2024-43883
www.suse.com/security/cve/CVE-2024-44938
www.suse.com/security/cve/CVE-2024-44947
www.suse.com/support/update/announcement/2024/suse-su-20243227-1/
Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low