Security update for the Linux Kernel
Announcement ID: | SUSE-SU-2024:3225-1 |
---|---|
Rating: | important |
References: |
|
Cross-References: |
|
CVSS scores: |
|
Affected Products: |
|
An update that solves 51 vulnerabilities and has 14 security fixes can now be installed.
Description:
The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-44947: Initialize beyond-EOF page contents before setting uptodate (bsc#1229454).
- CVE-2022-48919: Fix double free race when mount fails in cifs_get_root() (bsc#1229657).
- CVE-2023-52854: Fix refcnt handling in padata_free_shell() (bsc#1225584).
- CVE-2024-43883: Do not drop references before new references are gained (bsc#1229707).
- CVE-2024-41062: bluetooth/l2cap: sync sock recv cb and release (bsc#1228576).
- CVE-2024-43861: Fix memory leak for not ip packets (bsc#1229500).
- CVE-2024-41087: Fix double free on error (CVE-2024-41087,bsc#1228466).
- CVE-2024-43882: Fixed ToCToU between perm check and set-uid/gid usage. (bsc#1229503)
- CVE-2022-48912: Fix use-after-free in __nf_register_net_hook() (bsc#1229641)
- CVE-2022-48872: Fix use-after-free race condition for maps (bsc#1229510).
- CVE-2022-48873: Do not remove map on creater_process and device_release (bsc#1229512).
- CVE-2024-42271: Fixed a use after free in iucv_sock_close(). (bsc#1229400)
- CVE-2024-42232: Fixed a race between delayed_work() and ceph_monc_stop(). (bsc#1228959)
- CVE-2024-40910: Fix refcount imbalance on inbound connections (bsc#1227832).
- CVE-2024-41009: bpf: Fix overrunning reservations in ringbuf (bsc#1228020).
The following non-security bugs were fixed:
- Bluetooth: L2CAP: Fix deadlock (git-fixes).
- sched/psi: use kernfs polling functions for PSI trigger polling (bsc#1209799 bsc#1225109).
Special Instructions and Notes:
- Please reboot the system after installing this update.
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
SUSE Linux Enterprise Micro 5.1
zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-3225=1
-
SUSE Linux Enterprise Micro 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-3225=1
-
SUSE Linux Enterprise Micro for Rancher 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-3225=1
Package List:
-
SUSE Linux Enterprise Micro 5.1 (nosrc x86_64)
- kernel-rt-5.3.18-150300.181.2
-
SUSE Linux Enterprise Micro 5.1 (x86_64)
- kernel-rt-debuginfo-5.3.18-150300.181.2
- kernel-rt-debugsource-5.3.18-150300.181.2
-
SUSE Linux Enterprise Micro 5.1 (noarch)
- kernel-source-rt-5.3.18-150300.181.2
-
SUSE Linux Enterprise Micro 5.2 (nosrc x86_64)
- kernel-rt-5.3.18-150300.181.2
-
SUSE Linux Enterprise Micro 5.2 (x86_64)
- kernel-rt-debuginfo-5.3.18-150300.181.2
- kernel-rt-debugsource-5.3.18-150300.181.2
-
SUSE Linux Enterprise Micro 5.2 (noarch)
- kernel-source-rt-5.3.18-150300.181.2
-
SUSE Linux Enterprise Micro for Rancher 5.2 (nosrc x86_64)
- kernel-rt-5.3.18-150300.181.2
-
SUSE Linux Enterprise Micro for Rancher 5.2 (x86_64)
- kernel-rt-debuginfo-5.3.18-150300.181.2
- kernel-rt-debugsource-5.3.18-150300.181.2
-
SUSE Linux Enterprise Micro for Rancher 5.2 (noarch)
- kernel-source-rt-5.3.18-150300.181.2
References:
- https://www.suse.com/security/cve/CVE-2021-4441.html
- https://www.suse.com/security/cve/CVE-2022-48775.html
- https://www.suse.com/security/cve/CVE-2022-48778.html
- https://www.suse.com/security/cve/CVE-2022-48787.html
- https://www.suse.com/security/cve/CVE-2022-48788.html
- https://www.suse.com/security/cve/CVE-2022-48789.html
- https://www.suse.com/security/cve/CVE-2022-48790.html
- https://www.suse.com/security/cve/CVE-2022-48798.html
- https://www.suse.com/security/cve/CVE-2022-48802.html
- https://www.suse.com/security/cve/CVE-2022-48805.html
- https://www.suse.com/security/cve/CVE-2022-48811.html
- https://www.suse.com/security/cve/CVE-2022-48823.html
- https://www.suse.com/security/cve/CVE-2022-48824.html
- https://www.suse.com/security/cve/CVE-2022-48827.html
- https://www.suse.com/security/cve/CVE-2022-48834.html
- https://www.suse.com/security/cve/CVE-2022-48835.html
- https://www.suse.com/security/cve/CVE-2022-48836.html
- https://www.suse.com/security/cve/CVE-2022-48837.html
- https://www.suse.com/security/cve/CVE-2022-48838.html
- https://www.suse.com/security/cve/CVE-2022-48839.html
- https://www.suse.com/security/cve/CVE-2022-48843.html
- https://www.suse.com/security/cve/CVE-2022-48851.html
- https://www.suse.com/security/cve/CVE-2022-48853.html
- https://www.suse.com/security/cve/CVE-2022-48856.html
- https://www.suse.com/security/cve/CVE-2022-48857.html
- https://www.suse.com/security/cve/CVE-2022-48858.html
- https://www.suse.com/security/cve/CVE-2022-48872.html
- https://www.suse.com/security/cve/CVE-2022-48873.html
- https://www.suse.com/security/cve/CVE-2022-48901.html
- https://www.suse.com/security/cve/CVE-2022-48905.html
- https://www.suse.com/security/cve/CVE-2022-48912.html
- https://www.suse.com/security/cve/CVE-2022-48917.html
- https://www.suse.com/security/cve/CVE-2022-48919.html
- https://www.suse.com/security/cve/CVE-2022-48925.html
- https://www.suse.com/security/cve/CVE-2022-48926.html
- https://www.suse.com/security/cve/CVE-2022-48928.html
- https://www.suse.com/security/cve/CVE-2022-48930.html
- https://www.suse.com/security/cve/CVE-2022-48933.html
- https://www.suse.com/security/cve/CVE-2022-48934.html
- https://www.suse.com/security/cve/CVE-2023-52854.html
- https://www.suse.com/security/cve/CVE-2024-40910.html
- https://www.suse.com/security/cve/CVE-2024-41009.html
- https://www.suse.com/security/cve/CVE-2024-41062.html
- https://www.suse.com/security/cve/CVE-2024-41087.html
- https://www.suse.com/security/cve/CVE-2024-42077.html
- https://www.suse.com/security/cve/CVE-2024-42232.html
- https://www.suse.com/security/cve/CVE-2024-42271.html
- https://www.suse.com/security/cve/CVE-2024-43861.html
- https://www.suse.com/security/cve/CVE-2024-43882.html
- https://www.suse.com/security/cve/CVE-2024-43883.html
- https://www.suse.com/security/cve/CVE-2024-44947.html
- https://bugzilla.suse.com/show_bug.cgi?id=1176447
- https://bugzilla.suse.com/show_bug.cgi?id=1195668
- https://bugzilla.suse.com/show_bug.cgi?id=1195928
- https://bugzilla.suse.com/show_bug.cgi?id=1195957
- https://bugzilla.suse.com/show_bug.cgi?id=1196018
- https://bugzilla.suse.com/show_bug.cgi?id=1196516
- https://bugzilla.suse.com/show_bug.cgi?id=1196823
- https://bugzilla.suse.com/show_bug.cgi?id=1202346
- https://bugzilla.suse.com/show_bug.cgi?id=1209636
- https://bugzilla.suse.com/show_bug.cgi?id=1209799
- https://bugzilla.suse.com/show_bug.cgi?id=1210629
- https://bugzilla.suse.com/show_bug.cgi?id=1216834
- https://bugzilla.suse.com/show_bug.cgi?id=1222251
- https://bugzilla.suse.com/show_bug.cgi?id=1225109
- https://bugzilla.suse.com/show_bug.cgi?id=1225584
- https://bugzilla.suse.com/show_bug.cgi?id=1227832
- https://bugzilla.suse.com/show_bug.cgi?id=1227924
- https://bugzilla.suse.com/show_bug.cgi?id=1227928
- https://bugzilla.suse.com/show_bug.cgi?id=1227932
- https://bugzilla.suse.com/show_bug.cgi?id=1227935
- https://bugzilla.suse.com/show_bug.cgi?id=1227941
- https://bugzilla.suse.com/show_bug.cgi?id=1227942
- https://bugzilla.suse.com/show_bug.cgi?id=1227945
- https://bugzilla.suse.com/show_bug.cgi?id=1227952
- https://bugzilla.suse.com/show_bug.cgi?id=1227964
- https://bugzilla.suse.com/show_bug.cgi?id=1227969
- https://bugzilla.suse.com/show_bug.cgi?id=1227985
- https://bugzilla.suse.com/show_bug.cgi?id=1227987
- https://bugzilla.suse.com/show_bug.cgi?id=1227988
- https://bugzilla.suse.com/show_bug.cgi?id=1227989
- https://bugzilla.suse.com/show_bug.cgi?id=1227997
- https://bugzilla.suse.com/show_bug.cgi?id=1228000
- https://bugzilla.suse.com/show_bug.cgi?id=1228004
- https://bugzilla.suse.com/show_bug.cgi?id=1228005
- https://bugzilla.suse.com/show_bug.cgi?id=1228006
- https://bugzilla.suse.com/show_bug.cgi?id=1228015
- https://bugzilla.suse.com/show_bug.cgi?id=1228020
- https://bugzilla.suse.com/show_bug.cgi?id=1228037
- https://bugzilla.suse.com/show_bug.cgi?id=1228045
- https://bugzilla.suse.com/show_bug.cgi?id=1228060
- https://bugzilla.suse.com/show_bug.cgi?id=1228062
- https://bugzilla.suse.com/show_bug.cgi?id=1228066
- https://bugzilla.suse.com/show_bug.cgi?id=1228466
- https://bugzilla.suse.com/show_bug.cgi?id=1228516
- https://bugzilla.suse.com/show_bug.cgi?id=1228576
- https://bugzilla.suse.com/show_bug.cgi?id=1228959
- https://bugzilla.suse.com/show_bug.cgi?id=1229400
- https://bugzilla.suse.com/show_bug.cgi?id=1229454
- https://bugzilla.suse.com/show_bug.cgi?id=1229500
- https://bugzilla.suse.com/show_bug.cgi?id=1229503
- https://bugzilla.suse.com/show_bug.cgi?id=1229510
- https://bugzilla.suse.com/show_bug.cgi?id=1229512
- https://bugzilla.suse.com/show_bug.cgi?id=1229598
- https://bugzilla.suse.com/show_bug.cgi?id=1229604
- https://bugzilla.suse.com/show_bug.cgi?id=1229607
- https://bugzilla.suse.com/show_bug.cgi?id=1229620
- https://bugzilla.suse.com/show_bug.cgi?id=1229621
- https://bugzilla.suse.com/show_bug.cgi?id=1229624
- https://bugzilla.suse.com/show_bug.cgi?id=1229626
- https://bugzilla.suse.com/show_bug.cgi?id=1229629
- https://bugzilla.suse.com/show_bug.cgi?id=1229630
- https://bugzilla.suse.com/show_bug.cgi?id=1229637
- https://bugzilla.suse.com/show_bug.cgi?id=1229641
- https://bugzilla.suse.com/show_bug.cgi?id=1229657
- https://bugzilla.suse.com/show_bug.cgi?id=1229707