SUSE-SU-2023:2416-1 Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059109 fixes several issues. The following security issues were fixed: - CVE-2023-28464: Fixed user-after-free that could lead to privilege escalation in hciconncleanup in net/uetooth/hciconn.c bsc1211111. - CVE-2023-1989: Fixed a use after free in...

SUSE-SU-2023:2399-1 Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122150 fixes several issues. The following security issues were fixed: - CVE-2023-28464: Fixed user-after-free that could lead to privilege escalation in hciconncleanup in net/uetooth/hciconn.c bsc1211111. - CVE-2023-1989: Fixed a use after free in...

SUSE-SU-2023:2386-1 Security update for the Linux Kernel (Live Patch 39 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-150100197142 fixes several issues. The following security issues were fixed: - CVE-2023-1989: Fixed a use after free in btsdioremove bsc1210500. - CVE-2023-2162: Fixed an use-after-free flaw in iscsiswtcpsessioncreate bsc1210662. - CVE-2023-23454: Fixed a...

SUSE-SU-2023:2376-1 Security update for the Linux Kernel (Live Patch 31 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-150100197114 fixes several issues. The following security issues were fixed: - CVE-2023-28464: Fixed user-after-free that could lead to privilege escalation in hciconncleanup in net/uetooth/hciconn.c bsc1211111. - CVE-2023-1989: Fixed a use after free in...

CVE-2023-0459 Copy_from_user Spectre-V1 Gadget in Linux Kernel

Copyfromuser on 64-bit versions of the Linux kernel does not implement the uaccessbeginnospec allowing a user to bypass the "accessok" check and pass a kernel pointer to copyfromuser. This would allow an attacker to leak information. We recommend upgrading beyond...

PT-2025-26094

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the freeing of not-finalized bpf prog pack. The issue occurs when there are multiple subprogs and jit subprogs is called...

PT-2025-26074 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A potential NULL pointer dereference issue has been identified in the Linux kernel, specifically in the kernfs remove function. This issue arises when lockdep is enabled, causing lockd...

PT-2025-17220 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been identified in the Linux kernel, specifically in the es58x rx err msg function. This occurs when can-do set mode fails, causing the function to return witho...

SUSE-SU-2023:1992-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-5753: Fixed spectre V1 vulnerability on netlink bsc1209547. - CVE-2017-5753: Fixed spectre vulnerability in prlimit bsc1209256. - CVE-2022-4744: Fixe...

SUSE-SU-2023:1982-1 Security update for the Linux Kernel (Live Patch 35 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-150100197126 fixes several issues. The following security issues were fixed: - CVE-2023-0590: Fixed race condition in qdiscgraft bsc1207795. - CVE-2023-1118: Fixed a use-after-free bugs caused by enetxirqsim in media/rc bsc1208837...

SUSE-SU-2023:1977-1 Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504001511 fixes several issues. The following security issues were fixed: - CVE-2023-1652: Fixed use-after-free that could lead to DoS and information leak in nfsd4sscsetupdul in fs/nfsd/nfs4proc.c bsc1209788. - CVE-2023-1118: Fixed a use-after-free bugs...

SUSE-SU-2023:1640-1 Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122147 fixes several issues. The following security issues were fixed: - CVE-2023-26545: Fixed double free in net/mpls/afmpls.c upon an allocation failure bsc1208909. - CVE-2023-0266: Fixed a use-after-free vulnerability inside the ALSA PCM package...

LSN-0093-1 Kernel Live Patch Security Notice

Davide Ornaghi discovered that the netfilter subsystem in the Linux kernel did not properly handle VLAN headers in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code.CVE-2023-0179 It was discovered that the Upper Level...

SUSE-SU-2023:1574-1 Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-150400158 fixes several issues. The following security issues were fixed: - CVE-2023-26545: Fixed double free in net/mpls/afmpls.c upon an allocation failure bsc1208700. - CVE-2023-1078: Fixed a heap out-of-bounds write in rdsrmzerocopycallback bsc1208838...

Linux kernel resource management error vulnerability (CNVD-2023-34470)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a security issue in the traffic control index filter tcindex, where a call to tcfextsexec while using a...

SUSE-SU-2023:0749-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. - CVE-2022-3523: Fixed use after free related to device private page handling bsc1204363. - CVE-2022-38096: Fixed NULL-ptr deref in vmwcmddxdefinequery bsc1203331. - CVE-2023-0461: Fixed use-after-fre...

SUSE-SU-2023:0774-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 Azure kernel was updated to receive various security and bugfixes. - CVE-2022-3523: Fixed use after free related to device private page handling bsc1204363. - CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver bsc1203332. -...

PT-2023-35378 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.13 Description: A potential security issue has been identified in the Linux Kernel, related to the transmission of SYN messages, which may cause a kernel warning. The actual impact and attack plausibility...

CVE-2023-23000

In the Linux kernel before 5.17, drivers/phy/tegra/xusb.c mishandles the tegraxusbfindportnode return value. Callers expect NULL in the error case, but an error pointer is used...

SUSE-SU-2023:0562-1 Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005998 fixes several issues. The following security issues were fixed: - CVE-2022-3564: Fixed use-after-free in l2capcore.c of the Bluetooth component bsc1206314. - CVE-2023-0179: Fixed incorrect arithmetics when fetching VLAN header bits bsc1207139...