SUSE-SU-2024:0129-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix garbage collector's deletion of SKB races with unixstreamreadgeneric on the socket th...

SUSE-SU-2023:4862-1 Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059109 fixes several issues. The following security issues were fixed: - CVE-2023-3777: Fixed a use-after-free vulnerability in netfilter: nftables component can be exploited to achieve local privilege escalation. bsc1215097 - CVE-2023-4622: Fixed a...

SUSE-SU-2023:4847-1 Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122147 fixes one issue. The following security issue was fixed: - CVE-2023-4622: Fixed a use-after-free vulnerability in the Unix domain sockets component which could be exploited to achieve local privilege escalation bsc1215442...

SUSE-SU-2023:4833-1 Security update for the Linux Kernel (Live Patch 32 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024139 fixes several issues. The following security issues were fixed: - CVE-2023-4622: Fixed a use-after-free vulnerability in the Unix domain sockets component which could be exploited to achieve local privilege escalation bsc1215442. - CVE-2023-2163...

SUSE-SU-2023:4378-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-2163: Fixed an incorrect verifier pruning in BPF that could lead to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/writ...

SUSE-SU-2023:4375-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-3777: Fixed a use-after-free vulnerability in netfilter: nftables component can be exploited to achieve local privilege escalation. bsc1215095 -...

CVE-2023-1194

An out-of-bounds OOB memory read flaw was found in parseleasestate in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When an attacker sends the CREATE command with a malformed payload to KSMBD, due to a missing check of NameOffset in the parseleasestate...

SUSE-SU-2023:4343-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-31085: Fixed a divide-by-zero error in dodivsz,mtd-erasesize that could cause a local DoS. bsc1210778 - CVE-2023-45862: Fixed an issue in the ENE...

CVE-2023-1193

A use-after-free flaw was found in setupasyncwork in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. This issue could allow an attacker to crash the system by accessing freed work...

SUSE-SU-2023:4325-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005519 fixes several issues. The following security issues were fixed: - CVE-2023-4147: Fixed use-after-free in nftablesnewrule bsc1215118. - CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve...

SUSE-SU-2023:4285-1 Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002438 fixes several issues. The following security issues were fixed: - CVE-2023-4147: Fixed use-after-free in nftablesnewrule bsc1215118. - CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve...

SUSE-SU-2023:4267-1 Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002428 fixes several issues. The following security issues were fixed: - CVE-2023-4147: Fixed use-after-free in nftablesnewrule bsc1215118. - CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve...

SUSE-SU-2023:4175-1 Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-150500135 fixes several issues. The following security issues were fixed: - CVE-2023-4147: Fixed use-after-free in nftablesnewrule bsc1215118. - CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve...

SUSE-SU-2023:4072-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-4563: Fixed an use-after-free flaw in the nftables sub-component. This vulnerability could allow a local attacker to crash the system or lead to a kerne...

SUSE-SU-2023:3971-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-38457: Fixed a use-after-free vulnerability in vmwgfx driver that allowed a local attacker to cause a denial of service bsc1203330. - CVE-2022-40133:...

SUSE-SU-2023:3964-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-2007: Fixed a flaw in the DPT I2O Controller driver that could allow an attacker to escalate privileges and execute arbitrary code in the context of...

SUSE-SU-2023:3846-1 Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024145 fixes several issues. The following security issues were fixed: - CVE-2023-3776: Fixed improper refcount update in clsfw leads to use-after-free bsc1215119. - CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter tcinde...

SUSE-SU-2023:3806-1 Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505001311 fixes one issue. The following security issue was fixed: - CVE-2023-4273: Fixed a flaw in the exFAT driver of the Linux kernel that alloawed a local privileged attacker to overflow the kernel stack bsc1214123...

SUSE-SU-2023:3784-1 Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-150500135 fixes several issues. The following security issues were fixed: - CVE-2023-3776: Fixed improper refcount update in clsfw leads to use-after-free bsc1215119. - CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter tcindex...

SUSE-SU-2023:3620-1 Security update for the Linux Kernel (Live Patch 36 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024151 fixes several issues. The following security issues were fixed: - CVE-2023-32233: Fixed a use-after-free in Netfilter nftables when processing batch requests bsc1211187. - CVE-2023-3567: Fixed a use-after-free in vcsread in...