Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE Linux Kernel: 2024:0110-1 important: multiple security fixes

suse
Calendar Grey January 17, 2024
Dist Suse Esm H88
Critical update released for SUSE Linux Kernel tackling various security flaws alongside enhancements. System reboot required after installation.
* bsc#1179610 * bsc#1211226 * bsc#1215237 * bsc#1215375 * bsc#1217250

Summary

## The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2020-26555: Fixed an issue during BR/EDR PIN code pairing in the Bluetooth subsystem that would allow replay attacks (bsc#1179610 bsc#1215237). * CVE-2023-6121: Fixed an information leak via dmesg when receiving a crafted packet in the NVMe-oF/TCP subsystem (bsc#1217250). * CVE-2023-6606: Fixed an out of bounds read in the SMB client when receiving a malformed length from a server (bsc#1217947). * CVE-2023-6610: Fixed an out of bounds read in the SMB client when printing debug information (bsc#1217946). * CVE-2023-6931: Fixed an out of bounds write in the Performance Events subsystem when adding a new event (bsc#1218258).

Topics%20covered

Topics Covered

security advisory security fix important kernel SUSE bug resolution

References

* bsc#1179610

* bsc#1211226

* bsc#1215237

* bsc#1215375

* bsc#1217250

* bsc#1217709

* bsc#1217946

* bsc#1217947

* bsc#1218105

* bsc#1218184

* bsc#1218253

* bsc#1218258

* bsc#1218559

* jsc#PED-5021

Cross-

* CVE-2020-26555

* CVE-2023-51779

* CVE-2023-6121

* CVE-2023-6606

* CVE-2023-6610

* CVE-2023-6931

* CVE-2023-6932

CVSS scores:

* CVE-2020-26555 ( SUSE ): 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

* CVE-2020-26555 ( NVD ): 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

* CVE-2023-51779 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2023-6121 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

* CVE-2023-6121 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

* CVE-2023-6606 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:0110-1
Rating: important

Topics%20covered

Topics Covered

security advisory security fix important kernel SUSE bug resolution

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here