kernel: scsi: mpt3sas: Fix NULL pointer access in mpt3sas_transport_port_add()

In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix NULL pointer access in mpt3sastransportportadd Port is allocated by sasportallocnum and rphy is allocated by either sasenddevicealloc or sasexpanderalloc, all of which may return NULL. So we need to check the...

kernel security, bug fix, and enhancement update

5.14.0-362.8.13.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

CVE-2023-42755 affecting package kernel for versions less than 5.15.135.1-2

CVE-2023-42755 affecting package kernel for versions less than 5.15.135.1-2. A patched version of the package is available...

kernel: net: add vlan_get_protocol_and_depth() helper

In the Linux kernel, the following vulnerability has been resolved: net: add vlangetprotocolanddepth helper Before blamed commit, pskbmaypull was used instead of skbheaderpointer in vlangetprotocol and friends. Few callers depended on skb-head being populated with MAC header, syzbot caught one of...

kernel: ipv6: Fix out-of-bounds access in ipv6_find_tlv()

An out of bounds OOB memory access flaw was found in the Linux kernel's ipv6 network subsystem. This could allow a local attacker to crash the system or leak kernel internal information...

kernel: Linux kernel: Denial of Service in s390/lcs network driver due to incompatible function pointer type

A flaw was found in the Linux kernel's s390/lcs network driver. An incorrect function pointer type in the lcsstartxmit function could lead to a system crash or termination of a process. This issue arises when Kernel Control Flow Integrity kCFI, a security feature designed to prevent certain types...

kernel: KVM: SEV-ES / SEV-SNP VMGEXIT double fetch vulnerability

A flaw was found in KVM AMD Secure Encrypted Virtualization SEV in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple time...

CVE-2023-42533

Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel...

CVE-2023-42533

Improper Input Validation with USB Gadget Interface prior to SMR Nov-2023 Release 1 allows a physical attacker to execute arbitrary code in Kernel...

SUSE-SU-2023:4378-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-2163: Fixed an incorrect verifier pruning in BPF that could lead to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/writ...

SUSE-SU-2023:4375-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-3777: Fixed a use-after-free vulnerability in netfilter: nftables component can be exploited to achieve local privilege escalation. bsc1215095 -...

CVE-2023-1194

An out-of-bounds OOB memory read flaw was found in parseleasestate in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When an attacker sends the CREATE command with a malformed payload to KSMBD, due to a missing check of NameOffset in the parseleasestate...

SUSE-SU-2023:4343-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-31085: Fixed a divide-by-zero error in dodivsz,mtd-erasesize that could cause a local DoS. bsc1210778 - CVE-2023-45862: Fixed an issue in the ENE...

CVE-2023-1193

A use-after-free flaw was found in setupasyncwork in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. This issue could allow an attacker to crash the system by accessing freed work...

SUSE-SU-2023:4325-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005519 fixes several issues. The following security issues were fixed: - CVE-2023-4147: Fixed use-after-free in nftablesnewrule bsc1215118. - CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve...

SUSE-SU-2023:4285-1 Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002438 fixes several issues. The following security issues were fixed: - CVE-2023-4147: Fixed use-after-free in nftablesnewrule bsc1215118. - CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve...

SUSE-SU-2023:4267-1 Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002428 fixes several issues. The following security issues were fixed: - CVE-2023-4147: Fixed use-after-free in nftablesnewrule bsc1215118. - CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve...

OESA-2023-1769 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An issue was discovered in drivers/usb/storage/eneub6250.c for the ENE UB6250 reader driver in the Linux kernel before 6.2.5. An object could potentially extend beyond the end of an allocation.CVE-2023-45862...

SUSE-SU-2023:4175-1 Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-150500135 fixes several issues. The following security issues were fixed: - CVE-2023-4147: Fixed use-after-free in nftablesnewrule bsc1215118. - CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve...

kernel security update

2.6.32-754.49.1.OL6 - x86/speculation: Use generic retpoline by default on AMD CVE-2021-26401 Orabug: 34986011...