openSUSE Leap 15.4: SUSE-SU-2023:0410-1 Important Denial of Service Fix

opensuse

February 14, 2023

An update that solves 6 vulnerabilities, contains one feature and has 5 fixes is now available.

Description

The SUSE Linux Enterprise 15 SP1 kernel was updated receive various

security and bugfixes.

The following security bugs were fixed:

- CVE-2022-3107: Fixed missing check of return value of kvmalloc_array()

(bnc#1206395).

- CVE-2022-3108: Fixed missing check of return value of kmemdup()

(bnc#1206389).

- CVE-2022-3564: Fixed use-after-free in l2cap_core.c of the Bluetooth

component (bnc#1206073).

- CVE-2022-4662: Fixed incorrect access control in the USB core subsystem

that could lead a local user to crash the system (bnc#1206664).

- CVE-2022-47929: Fixed NULL pointer dereference bug in the traffic

control subsystem (bnc#1207237).

- CVE-2023-23454: Fixed denial or service in cbq_classify in

net/sched/sch_cbq.c (bnc#1207036).

The following non-security bugs were fixed:

- Added support for enabling livepatching related packages on -RT

(jsc#PED-1706).

- Added suse-kernel-rpm-scriptlets to kmp buildreqs...

Read the Full Advisory

Topics Covered

security advisory denial of service kernel openSUSE maintenance update

Patch

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 15.4:

zypper in -t patch openSUSE-SLE-15.4-2023-410=1

- SUSE Linux Enterprise Server for SAP 15-SP1:

zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2023-410=1

- SUSE Linux Enterprise Server 15-SP1-LTSS:

zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2023-410=1

- SUSE Linux Enterprise Module for Live Patching 15-SP1:

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP1-2023-410=1

Please note that this is the initial kernel livepatch without fixes

itself, this livepatch package is later updated by seperate standalone

livepatch updates.

- SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS:

zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2023-410=1

- SUSE Linux Enterprise High Availability 15-SP1:

zypper in -t patch SUSE-SLE-Product-HA-15-SP1-2023-410=1

-...

Read the Full Advisory

Package List

- openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64):

kernel-default-base-debuginfo-4.12.14-150100.197.134.1

kernel-vanilla-4.12.14-150100.197.134.1

kernel-vanilla-base-4.12.14-150100.197.134.1

kernel-vanilla-base-debuginfo-4.12.14-150100.197.134.1

kernel-vanilla-debuginfo-4.12.14-150100.197.134.1

kernel-vanilla-debugsource-4.12.14-150100.197.134.1

kernel-vanilla-devel-4.12.14-150100.197.134.1

kernel-vanilla-devel-debuginfo-4.12.14-150100.197.134.1

kernel-vanilla-livepatch-devel-4.12.14-150100.197.134.1

- openSUSE Leap 15.4 (ppc64le x86_64):

kernel-debug-base-4.12.14-150100.197.134.1

kernel-debug-base-debuginfo-4.12.14-150100.197.134.1

- openSUSE Leap 15.4 (x86_64):

kernel-kvmsmall-base-4.12.14-150100.197.134.1

kernel-kvmsmall-base-debuginfo-4.12.14-150100.197.134.1

- openSUSE Leap 15.4 (s390x):

kernel-default-man-4.12.14-150100.197.134.1

kernel-zfcpdump-man-4.12.14-150100.197.134.1

- SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64):

kernel-default-4.12.14-150100.197.134.1

kernel-default-base-4....

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2022-3107.html

https://www.suse.com/security/cve/CVE-2022-3108.html

https://www.suse.com/security/cve/CVE-2022-3564.html

https://www.suse.com/security/cve/CVE-2022-4662.html

https://www.suse.com/security/cve/CVE-2022-47929.html

https://www.suse.com/security/cve/CVE-2023-23454.html

https://bugzilla.suse.com/1203693

https://bugzilla.suse.com/1205149

https://bugzilla.suse.com/1206073

https://bugzilla.suse.com/1206389

https://bugzilla.suse.com/1206395

https://bugzilla.suse.com/1206664

https://bugzilla.suse.com/1206677

https://bugzilla.suse.com/1206784

https://bugzilla.suse.com/1207036

https://bugzilla.suse.com/1207186

https://bugzilla.suse.com/1207237

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2023:0410-1

Rating: important

Affected Products: SUSE CaaS Platform 4.0 SUSE Linux Enterprise High Availability 15-SP1 SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS SUSE Linux Enterprise Module for Live Patching 15-SP1 SUSE Linux Enterprise Server 15-SP1-LTSS SUSE Linux Enterprise Server for SAP 15-SP1 openSUSE Leap 15.4 le.

Topics Covered

security advisory denial of service kernel openSUSE maintenance update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

openSUSE Leap 15.4: SUSE-SU-2023:0410-1 Important Denial of Service Fix

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

openSUSE Leap 15.4: SUSE-SU-2023:0410-1 Important Denial of Service Fix

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!