openSUSE: 2023:0488-1 Important: Multiple RT Kernel Security Fixes

opensuse

February 27, 2024

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes

Description

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various

security and bugfixes.

The following security bugs were fixed:

* CVE-2022-36280: Fixed an out-of-bounds memory access vulnerability that was

found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c (bnc#1203332).

* CVE-2023-0045: Fixed flush IBP in ib_prctl_set() (bsc#1207773).

* CVE-2023-0590: Fixed race condition in qdisc_graft() (bsc#1207795).

* CVE-2023-0122: Fixed a NULL pointer dereference vulnerability in

nvmet_setup_auth(), that allowed an attacker to perform a Pre-Auth Denial of

Service (DoS) attack on a remote machine (bnc#1207050).

* CVE-2023-23455: Fixed a denial of service inside atm_tc_enqueue in

net/sched/sch_atm.c because of type confusion (non-negative numbers can

sometimes indicate a TC_ACT_SHOT condition rather than valid classification

results) (bsc#1207125).

* CVE-2023-23454: Fixed denial or service in cbq_classify in

net/sched/sch_cbq.c (bnc#1207036).

* CVE-2020-24588:...

Read the Full Advisory

Topics Covered

security advisory race condition security fixes important update openSUSE bug correction RT Kernel

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap Micro 5.3

zypper in -t patch openSUSE-Leap-Micro-5.3-2023-488=1

* openSUSE Leap 15.4

zypper in -t patch openSUSE-SLE-15.4-2023-488=1

* SUSE Linux Enterprise Micro for Rancher 5.3

zypper in -t patch SUSE-SLE-Micro-5.3-2023-488=1

* SUSE Linux Enterprise Micro 5.3

zypper in -t patch SUSE-SLE-Micro-5.3-2023-488=1

* SUSE Linux Enterprise Live Patching 15-SP4

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2023-488=1

* SUSE Real Time Module 15-SP4

zypper in -t patch SUSE-SLE-Module-RT-15-SP4-2023-488=1

Package List

* openSUSE Leap Micro 5.3 (nosrc x86_64)

* kernel-rt-5.14.21-150400.15.11.1

* openSUSE Leap Micro 5.3 (x86_64)

* kernel-rt-debuginfo-5.14.21-150400.15.11.1

* kernel-rt-debugsource-5.14.21-150400.15.11.1

* openSUSE Leap 15.4 (x86_64)

* kernel-rt_debug-debugsource-5.14.21-150400.15.11.1

* kernel-rt-debugsource-5.14.21-150400.15.11.1

* kernel-rt-devel-debuginfo-5.14.21-150400.15.11.1

* ocfs2-kmp-rt-debuginfo-5.14.21-150400.15.11.1

* kernel-rt_debug-devel-5.14.21-150400.15.11.1

* kernel-rt-devel-5.14.21-150400.15.11.1

* dlm-kmp-rt-debuginfo-5.14.21-150400.15.11.1

* kernel-rt_debug-debuginfo-5.14.21-150400.15.11.1

* kernel-rt_debug-devel-debuginfo-5.14.21-150400.15.11.1

* dlm-kmp-rt-5.14.21-150400.15.11.1

* kernel-rt-debuginfo-5.14.21-150400.15.11.1

* kernel-syms-rt-5.14.21-150400.15.11.1

* ocfs2-kmp-rt-5.14.21-150400.15.11.1

* gfs2-kmp-rt-5.14.21-150400.15.11.1

* cluster-md-kmp-rt-5.14.21-150400.15.11.1

* gfs2-kmp-rt-debuginfo-5.14.21-150400.15.11.1

* cluster-md-kmp-rt-debuginfo-5.14.21-150400.15.11.1

*...

Read the Full Advisory

References

* bsc#1166486

* bsc#1185861

* bsc#1185863

* bsc#1186449

* bsc#1191256

* bsc#1192868

* bsc#1193629

* bsc#1194869

* bsc#1195175

* bsc#1195655

* bsc#1196058

* bsc#1199701

* bsc#1203332

* bsc#1204063

* bsc#1204356

* bsc#1204662

* bsc#1205495

* bsc#1206006

* bsc#1206036

* bsc#1206056

* bsc#1206057

* bsc#1206224

* bsc#1206258

* bsc#1206363

* bsc#1206459

* bsc#1206616

* bsc#1206640

* bsc#1206677

* bsc#1206784

* bsc#1206876

* bsc#1206877

* bsc#1206878

* bsc#1206880

* bsc#1206881

* bsc#1206882

* bsc#1206883

* bsc#1206884

* bsc#1206885

* bsc#1206886

* bsc#1206887

* bsc#1206888

* bsc#1206889

* bsc#1206890

* bsc#1206893

* bsc#1206894

* bsc#1207010

* bsc#1207034

* bsc#1207036

* bsc#1207050

* bsc#1207125

* bsc#1207134

* bsc#1207149

* bsc#1207158

* bsc#1207184

* bsc#1207186

* bsc#1207188

* bsc#1207189

* bsc#1207190

* bsc#1207237

* bsc#1207263

* bsc#1207269

* bsc#1207328

* bsc#1207497

* bsc#1207500

* bsc#1207501

* bsc#1207506

* bsc#1207507

* bsc#1207588

* bsc#1207589

* bsc#1207590

* bsc#1207591

* bsc#1207592

* bsc#1207593

* bsc#1207594

* bsc#1207602

* bsc#1207603

*...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2023:0488-1

Rating: important

Topics Covered

security advisory race condition security fixes important update openSUSE bug correction RT Kernel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

openSUSE: 2023:0488-1 Important: Multiple RT Kernel Security Fixes

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

openSUSE: 2023:0488-1 Important: Multiple RT Kernel Security Fixes

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!