Design/Logic Flaw

Rejected reason: CVE-2023-4881 was wrongly assigned to a bug that was deemed to be a non-security issue by the Linux kernel security team...

SUSE-SU-2023:2735-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002421 fixes several issues. The following security issues were fixed: - CVE-2023-23455: Fixed a denial of service inside atmtcenqueue in net/sched/schatm.c because of type confusion non-negative numbers can sometimes indicate a TCACTSHOT condition...

SUSE-SU-2023:2714-1 Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002418 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-23455: Fixed a denial of service insi...

SUSE-SU-2023:2703-1 Security update for the Linux Kernel (Live Patch 8 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002446 fixes several issues. The following security issues were fixed: - CVE-2023-31436: Fixed an out-of-bounds write in qfqchangeclass because lmax can exceed QFQMINLMAX bsc1210989. - CVE-2023-28466: Fixed race condition that could lead to...

SUSE-SU-2023:2701-1 Security update for the Linux Kernel (Live Patch 30 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059115 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-31436: Fixed an out-of-bounds write i...

SUSE-SU-2023:2646-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 AZURE kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-3161: Fixed shift-out-of-bounds in fbconsetfont bsc1212154. - CVE-2023-21102: Fixed possible bypass of shadow stack protection in efirtasmwrapper ...

SUSE-SU-2023:2534-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-1077: Fixed a type confusion in picknextrtentity, that could cause memory corruption bsc1208600. - CVE-2022-3566: Fixed race condition in the TCP Handle...

SUSE-SU-2023:2442-1 Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122144 fixes several issues. The following security issues were fixed: - CVE-2023-28464: Fixed user-after-free that could lead to privilege escalation in hciconncleanup in net/uetooth/hciconn.c bsc1211111. - CVE-2023-1989: Fixed a use after free in...

CVE-2023-0459 Copy_from_user Spectre-V1 Gadget in Linux Kernel

Copyfromuser on 64-bit versions of the Linux kernel does not implement the uaccessbeginnospec allowing a user to bypass the "accessok" check and pass a kernel pointer to copyfromuser. This would allow an attacker to leak information. We recommend upgrading beyond...

PT-2025-17220 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been identified in the Linux kernel, specifically in the es58x rx err msg function. This occurs when can-do set mode fails, causing the function to return witho...

PT-2025-26074 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A potential NULL pointer dereference issue has been identified in the Linux kernel, specifically in the kernfs remove function. This issue arises when lockdep is enabled, causing lockd...

PT-2025-26094

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the freeing of not-finalized bpf prog pack. The issue occurs when there are multiple subprogs and jit subprogs is called...

SUSE-SU-2023:1982-1 Security update for the Linux Kernel (Live Patch 35 for SLE 15 SP1)

This update for the Linux Kernel 4.12.14-150100197126 fixes several issues. The following security issues were fixed: - CVE-2023-0590: Fixed race condition in qdiscgraft bsc1207795. - CVE-2023-1118: Fixed a use-after-free bugs caused by enetxirqsim in media/rc bsc1208837...

SUSE-SU-2023:1977-1 Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504001511 fixes several issues. The following security issues were fixed: - CVE-2023-1652: Fixed use-after-free that could lead to DoS and information leak in nfsd4sscsetupdul in fs/nfsd/nfs4proc.c bsc1209788. - CVE-2023-1118: Fixed a use-after-free bugs...

SUSE-SU-2023:1640-1 Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122147 fixes several issues. The following security issues were fixed: - CVE-2023-26545: Fixed double free in net/mpls/afmpls.c upon an allocation failure bsc1208909. - CVE-2023-0266: Fixed a use-after-free vulnerability inside the ALSA PCM package...

LSN-0093-1 Kernel Live Patch Security Notice

Davide Ornaghi discovered that the netfilter subsystem in the Linux kernel did not properly handle VLAN headers in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code.CVE-2023-0179 It was discovered that the Upper Level...

Linux kernel resource management error vulnerability (CNVD-2023-34470)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a security issue in the traffic control index filter tcindex, where a call to tcfextsexec while using a...

PT-2023-35378 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.13 Description: A potential security issue has been identified in the Linux Kernel, related to the transmission of SYN messages, which may cause a kernel warning. The actual impact and attack plausibility...

SUSE-SU-2023:0562-1 Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005998 fixes several issues. The following security issues were fixed: - CVE-2022-3564: Fixed use-after-free in l2capcore.c of the Bluetooth component bsc1206314. - CVE-2023-0179: Fixed incorrect arithmetics when fetching VLAN header bits bsc1207139...

PT-2023-34936 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.11 Description: A potential security issue exists in the Linux Kernel. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v6.1.11, update...