SUSE-SU-2023:3046-1 Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-150100197120 fixes several issues. The following security issues were fixed: - CVE-2023-3159: Fixed use-after-free issue in driver/firewire in outboundphypacketcallback bsc1212347. - CVE-2023-2002: Fixed a flaw that allowed an attacker to unauthorized...

CVE-2023-3357 affecting package kernel 5.10.183.1-1

CVE-2023-3357 affecting package kernel 5.10.183.1-1. A patched version of the package is available...

CVE-2023-3389 affecting package kernel 5.10.183.1-1

CVE-2023-3389 affecting package kernel 5.10.183.1-1. An upgraded version of the package is available that resolves this issue...

kernel security and bug fix update

5.14.0-284.18.12 - cifs: fix wrong unlock before return from cifstreeconnect - docs: Remove the unnecessary unicode character - perf vendor events intel: Refresh ivytown metrics and events - perf vendor events: Update Intel ivytown - perf vendor events intel: Refresh jaketown metrics and events -...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

SUSE-SU-2023:2822-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-3090: Fixed a heap out-of-bounds write in the ipvlan network driver bsc1212842. - CVE-2023-3111: Fixed a use-after-free vulnerability in preparetoreloca...

CVE-2023-21400

In multiple functions of iouring.c, there is a possible kernel memory corruption due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation...

OESA-2023-1394 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An out-of-bounds read vulnerability was found in the SR-IPv6 implementation in the Linux kernel. Quoting ZDI security advisory 1: "This vulnerability allows local attackers to disclose sensitive information on affected...

SUSE-SU-2023:0145-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-4662: Fixed a recursive locking violation in usb-storage that can cause the kernel to deadlock. bsc1206664 - CVE-2022-3564: Fixed a bug which could lead...

Medium: kernel

Issue Overview: 2023-07-06: The severity level was changed from important to medium. A flaw was found in the handling of stack expansion in the Linux kernel 6.1 through 6.4, aka "Stack Rot". The maple tree, responsible for managing virtual memory areas, can undergo node replacement without proper...

SUSE-SU-2023:2782-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-35828: Fixed a use-after-free flaw inside renesasusb3remove in drivers/usb/gadget/udc/renesasusb3.c bsc1212513. - CVE-2023-35823: Fixed a...

SUSE-SU-2023:2741-1 Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005987 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-23455: Fixed a denial of service insid...

SUSE-SU-2023:2735-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002421 fixes several issues. The following security issues were fixed: - CVE-2023-23455: Fixed a denial of service inside atmtcenqueue in net/sched/schatm.c because of type confusion non-negative numbers can sometimes indicate a TCACTSHOT condition...

SUSE-SU-2023:2714-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002418 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-23455: Fixed a denial of service insi...

SUSE-SU-2023:2703-1 Security update for the Linux Kernel (Live Patch 8 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002446 fixes several issues. The following security issues were fixed: - CVE-2023-31436: Fixed an out-of-bounds write in qfqchangeclass because lmax can exceed QFQMINLMAX bsc1210989. - CVE-2023-28466: Fixed race condition that could lead to...

SUSE-SU-2023:2701-1 Security update for the Linux Kernel (Live Patch 30 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059115 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-31436: Fixed an out-of-bounds write i...

SUSE-SU-2023:2698-1 Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024142 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-31436: Fixed an out-of-bounds write i...

SUSE-SU-2023:2687-1 Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-150100197145 fixes several issues. The following security issues were fixed: - CVE-2023-31436: Fixed an out-of-bounds write in qfqchangeclass because lmax can exceed QFQMINLMAX bsc1210989. - CVE-2023-28466: Fixed race condition that could lead to...

PT-2023-17858 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a heap buffer overflow in the cd CodeMsg function of cd codec.c, which could lead to remote code execution without requiring additional execution privileges. User interaction is not necessar...

SUSE-SU-2023:2646-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 AZURE kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-3161: Fixed shift-out-of-bounds in fbconsetfont bsc1212154. - CVE-2023-21102: Fixed possible bypass of shadow stack protection in efirtasmwrapper ...