openSUSE 15.5: 2024:0469-1 Important: Kernel Security Fixes

opensuse

February 14, 2024

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes

Description

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various

security bugfixes.

The following security bugs were fixed:

* CVE-2024-1085: Fixed nf_tables use-after-free vulnerability in the

nft_setelem_catchall_deactivate() function (bsc#1219429).

* CVE-2024-1086: Fixed a use-after-free vulnerability inside the nf_tables

component that could have been exploited to achieve local privilege

escalation (bsc#1219434).

* CVE-2023-51042: Fixed use-after-free in amdgpu_cs_wait_all_fences in

drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c (bsc#1219128).

* CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c,

because of a vcc_recvmsg race condition (bsc#1218730).

* CVE-2023-46838: Fixed an issue with Xen netback processing of zero-length

transmit fragment (bsc#1218836).

* CVE-2021-33631: Fixed an integer overflow in ext4_write_inline_data_end()

(bsc#1219412).

* CVE-2023-6535: Fixed a NULL pointer dereference in nvmet_tcp_execute_request

(bsc#1217988).

...

Read the Full Advisory

Topics Covered

security advisory local privilege escalation remote code execution security fix important kernel openSUSE

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5

zypper in -t patch SUSE-2024-469=1 openSUSE-SLE-15.5-2024-469=1

* SUSE Linux Enterprise Micro 5.5

zypper in -t patch SUSE-SLE-Micro-5.5-2024-469=1

* SUSE Linux Enterprise Live Patching 15-SP5

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-469=1

* SUSE Real Time Module 15-SP5

zypper in -t patch SUSE-SLE-Module-RT-15-SP5-2024-469=1

Package List

* openSUSE Leap 15.5 (noarch)

* kernel-devel-rt-5.14.21-150500.13.35.1

* kernel-source-rt-5.14.21-150500.13.35.1

* openSUSE Leap 15.5 (x86_64)

* kernel-rt-devel-5.14.21-150500.13.35.1

* kernel-rt-vdso-debuginfo-5.14.21-150500.13.35.1

* reiserfs-kmp-rt-5.14.21-150500.13.35.1

* kernel-livepatch-5_14_21-150500_13_35-rt-debuginfo-1-150500.11.5.1

* kselftests-kmp-rt-debuginfo-5.14.21-150500.13.35.1

* kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.35.1

* kernel-rt-livepatch-devel-5.14.21-150500.13.35.1

* cluster-md-kmp-rt-5.14.21-150500.13.35.1

* kernel-rt_debug-vdso-5.14.21-150500.13.35.1

* kernel-rt-debuginfo-5.14.21-150500.13.35.1

* dlm-kmp-rt-5.14.21-150500.13.35.1

* gfs2-kmp-rt-5.14.21-150500.13.35.1

* reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.35.1

* kernel-rt-livepatch-5.14.21-150500.13.35.1

* kernel-rt-optional-debuginfo-5.14.21-150500.13.35.1

* kernel-rt-debugsource-5.14.21-150500.13.35.1

* kernel-rt-extra-debuginfo-5.14.21-150500.13.35.1

*...

Read the Full Advisory

References

* bsc#1065729

* bsc#1108281

* bsc#1141539

* bsc#1174649

* bsc#1181674

* bsc#1193285

* bsc#1194869

* bsc#1209834

* bsc#1210443

* bsc#1211515

* bsc#1212091

* bsc#1214377

* bsc#1215275

* bsc#1215885

* bsc#1216441

* bsc#1216559

* bsc#1216702

* bsc#1217895

* bsc#1217987

* bsc#1217988

* bsc#1217989

* bsc#1218005

* bsc#1218447

* bsc#1218527

* bsc#1218659

* bsc#1218713

* bsc#1218723

* bsc#1218730

* bsc#1218738

* bsc#1218752

* bsc#1218757

* bsc#1218768

* bsc#1218778

* bsc#1218779

* bsc#1218804

* bsc#1218832

* bsc#1218836

* bsc#1218916

* bsc#1218948

* bsc#1218958

* bsc#1218968

* bsc#1218997

* bsc#1219006

* bsc#1219012

* bsc#1219013

* bsc#1219014

* bsc#1219053

* bsc#1219067

* bsc#1219120

* bsc#1219128

* bsc#1219136

* bsc#1219285

* bsc#1219349

* bsc#1219412

* bsc#1219429

* bsc#1219434

* bsc#1219490

* bsc#1219512

* bsc#1219568

* bsc#1219582

* jsc#PED-4729

* jsc#PED-6694

* jsc#PED-7322

* jsc#PED-7615

* jsc#PED-7616

* jsc#PED-7620

* jsc#PED-7622

* jsc#PED-7623

## References:

* https://www.suse.com/security/cve/CVE-2021-33631.html

*...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2024:0469-1

Rating: important

Topics Covered

security advisory local privilege escalation remote code execution security fix important kernel openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

openSUSE 15.5: 2024:0469-1 Important: Kernel Security Fixes

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

openSUSE 15.5: 2024:0469-1 Important: Kernel Security Fixes

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!