SUSE-SU-2023:3607-1 Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005990 fixes several issues. The following security issues were fixed: - CVE-2023-32233: Fixed a use-after-free in Netfilter nftables when processing batch requests bsc1211187. - CVE-2023-2156: Fixed a flaw in the networking subsystem within the handlin...

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Design/Logic Flaw

Rejected reason: CVE-2023-4881 was wrongly assigned to a bug that was deemed to be a non-security issue by the Linux kernel security team...

UBUNTU-CVE-2023-4881

Rejected reason: CVE-2023-4881 was wrongly assigned to a bug that was deemed to be a non-security issue by the Linux kernel security team...

Design/Logic Flaw

Rejected reason: CVE-2023-4705 was wrongly assigned to a bug that was deemed to be a non-security issue by the Linux kernel security team...

SUSE-SU-2023:3318-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-40982: Fixed transient execution attack called 'Gather Data Sampling' bsc1206418. - CVE-2023-0459: Fixed information leak in uaccessbeginnospec...

SUSE-SU-2023:3063-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002421 fixes several issues. The following security issues were fixed: - CVE-2023-35788: Fixed an out-of-bounds write in the flower classifier code via TCAFLOWERKEYENCOPTSGENEVE packets in flsetgeneveopt in net/sched/clsflower.c bsc1212509. -...

SUSE-SU-2023:3046-1 Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-150100197120 fixes several issues. The following security issues were fixed: - CVE-2023-3159: Fixed use-after-free issue in driver/firewire in outboundphypacketcallback bsc1212347. - CVE-2023-2002: Fixed a flaw that allowed an attacker to unauthorized...

SUSE-SU-2023:2822-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-3090: Fixed a heap out-of-bounds write in the ipvlan network driver bsc1212842. - CVE-2023-3111: Fixed a use-after-free vulnerability in preparetoreloca...

SUSE-SU-2023:0145-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-4662: Fixed a recursive locking violation in usb-storage that can cause the kernel to deadlock. bsc1206664 - CVE-2022-3564: Fixed a bug which could lead...

SUSE-SU-2023:2741-1 Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005987 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-23455: Fixed a denial of service insid...

SUSE-SU-2023:2735-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002421 fixes several issues. The following security issues were fixed: - CVE-2023-23455: Fixed a denial of service inside atmtcenqueue in net/sched/schatm.c because of type confusion non-negative numbers can sometimes indicate a TCACTSHOT condition...

SUSE-SU-2023:2714-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002418 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-23455: Fixed a denial of service insi...

SUSE-SU-2023:2703-1 Security update for the Linux Kernel (Live Patch 8 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002446 fixes several issues. The following security issues were fixed: - CVE-2023-31436: Fixed an out-of-bounds write in qfqchangeclass because lmax can exceed QFQMINLMAX bsc1210989. - CVE-2023-28466: Fixed race condition that could lead to...

SUSE-SU-2023:2701-1 Security update for the Linux Kernel (Live Patch 30 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059115 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-31436: Fixed an out-of-bounds write i...

SUSE-SU-2023:2698-1 Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024142 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-31436: Fixed an out-of-bounds write i...

SUSE-SU-2023:2687-1 Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-150100197145 fixes several issues. The following security issues were fixed: - CVE-2023-31436: Fixed an out-of-bounds write in qfqchangeclass because lmax can exceed QFQMINLMAX bsc1210989. - CVE-2023-28466: Fixed race condition that could lead to...

SUSE-SU-2023:2646-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 AZURE kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-3161: Fixed shift-out-of-bounds in fbconsetfont bsc1212154. - CVE-2023-21102: Fixed possible bypass of shadow stack protection in efirtasmwrapper ...

SUSE-SU-2023:2534-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-1077: Fixed a type confusion in picknextrtentity, that could cause memory corruption bsc1208600. - CVE-2022-3566: Fixed race condition in the TCP Handle...

SUSE-SU-2023:2442-1 Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122144 fixes several issues. The following security issues were fixed: - CVE-2023-28464: Fixed user-after-free that could lead to privilege escalation in hciconncleanup in net/uetooth/hciconn.c bsc1211111. - CVE-2023-1989: Fixed a use after free in...