openSUSE 15 SP4 Security Advisory: Important Kernel Update 2024:0129-1

opensuse

January 16, 2024

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes

Description

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various

security bugfixes.

The following security bugs were fixed:

* CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix

garbage collector's deletion of SKB races with unix_stream_read_generic() on

the socket that the SKB is queued on (bsc#1218447).

* CVE-2023-6610: Fixed an out of bounds read in the SMB client when printing

debug information (bsc#1217946).

* CVE-2023-51779: Fixed a use-after-free because of a bt_sock_ioctl race

condition in bt_sock_recvmsg (bsc#1218559).

* CVE-2020-26555: Fixed an issue during BR/EDR PIN code pairing in the

Bluetooth subsystem that would allow replay attacks (bsc#1179610

bsc#1215237).

* CVE-2023-6606: Fixed an out of bounds read in the SMB client when receiving

a malformed length from a server (bsc#1217947).

* CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via

the GSMIOC_SETCONF ioctl that could lead to local privilege...

Read the Full Advisory

Topics Covered

security advisory denial of service local privilege escalation kernel important update openSUSE security bugfix

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* SUSE Real Time Module 15-SP4

zypper in -t patch SUSE-SLE-Module-RT-15-SP4-2024-129=1

* openSUSE Leap Micro 5.3

zypper in -t patch openSUSE-Leap-Micro-5.3-2024-129=1

* openSUSE Leap Micro 5.4

zypper in -t patch openSUSE-Leap-Micro-5.4-2024-129=1

* SUSE Linux Enterprise Micro for Rancher 5.3

zypper in -t patch SUSE-SLE-Micro-5.3-2024-129=1

* SUSE Linux Enterprise Micro 5.3

zypper in -t patch SUSE-SLE-Micro-5.3-2024-129=1

* SUSE Linux Enterprise Micro for Rancher 5.4

zypper in -t patch SUSE-SLE-Micro-5.4-2024-129=1

* SUSE Linux Enterprise Micro 5.4

zypper in -t patch SUSE-SLE-Micro-5.4-2024-129=1

* SUSE Linux Enterprise Live Patching 15-SP4

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-129=1

Package List

* SUSE Real Time Module 15-SP4 (x86_64)

* kernel-rt-devel-debuginfo-5.14.21-150400.15.65.1

* kernel-rt-debuginfo-5.14.21-150400.15.65.1

* kernel-rt_debug-debuginfo-5.14.21-150400.15.65.1

* gfs2-kmp-rt-debuginfo-5.14.21-150400.15.65.1

* kernel-rt_debug-devel-5.14.21-150400.15.65.1

* cluster-md-kmp-rt-5.14.21-150400.15.65.1

* dlm-kmp-rt-debuginfo-5.14.21-150400.15.65.1

* kernel-rt-devel-5.14.21-150400.15.65.1

* ocfs2-kmp-rt-debuginfo-5.14.21-150400.15.65.1

* cluster-md-kmp-rt-debuginfo-5.14.21-150400.15.65.1

* kernel-syms-rt-5.14.21-150400.15.65.1

* ocfs2-kmp-rt-5.14.21-150400.15.65.1

* dlm-kmp-rt-5.14.21-150400.15.65.1

* kernel-rt_debug-debugsource-5.14.21-150400.15.65.1

* kernel-rt_debug-devel-debuginfo-5.14.21-150400.15.65.1

* kernel-rt-debugsource-5.14.21-150400.15.65.1

* gfs2-kmp-rt-5.14.21-150400.15.65.1

* SUSE Real Time Module 15-SP4 (noarch)

* kernel-devel-rt-5.14.21-150400.15.65.1

* kernel-source-rt-5.14.21-150400.15.65.1

* SUSE Real Time Module 15-SP4 (nosrc x86_64)

*...

Read the Full Advisory

References

* bsc#1179610

* bsc#1183045

* bsc#1193285

* bsc#1211162

* bsc#1211226

* bsc#1212584

* bsc#1214747

* bsc#1214823

* bsc#1215237

* bsc#1215696

* bsc#1215885

* bsc#1216057

* bsc#1216559

* bsc#1216776

* bsc#1217036

* bsc#1217217

* bsc#1217250

* bsc#1217602

* bsc#1217692

* bsc#1217790

* bsc#1217801

* bsc#1217933

* bsc#1217938

* bsc#1217946

* bsc#1217947

* bsc#1217980

* bsc#1217981

* bsc#1217982

* bsc#1218056

* bsc#1218139

* bsc#1218184

* bsc#1218234

* bsc#1218253

* bsc#1218258

* bsc#1218335

* bsc#1218357

* bsc#1218447

* bsc#1218515

* bsc#1218559

* bsc#1218569

* bsc#1218659

* jsc#PED-3459

* jsc#PED-5021

* jsc#PED-7322

## References:

* https://www.suse.com/security/cve/CVE-2020-26555.html

* https://www.suse.com/security/cve/CVE-2023-51779.html

* https://www.suse.com/security/cve/CVE-2023-6121.html

* https://www.suse.com/security/cve/CVE-2023-6531.html

* https://www.suse.com/security/cve/CVE-2023-6546.html

* https://www.suse.com/security/cve/CVE-2023-6606.html

* https://www.suse.com/security/cve/CVE-2023-6610.html

*...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2024:0129-1

Rating: important

Topics Covered

security advisory denial of service local privilege escalation kernel important update openSUSE security bugfix

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

openSUSE 15 SP4 Security Advisory: Important Kernel Update 2024:0129-1

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

openSUSE 15 SP4 Security Advisory: Important Kernel Update 2024:0129-1

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!