Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE Linux 12 SP5: Critical Kernel Update for Multiple Bugs

suse
Calendar Grey January 17, 2024
Dist Suse Esm H88
Essential patches address several weaknesses in the Linux Kernel. It's advised to reboot your system after installation.
* bsc#1108281 * bsc#1109837 * bsc#1179610 * bsc#1202095 * bsc#1211226

Summary

## The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: * CVE-2023-6610: Fixed an out of bounds read in the SMB client when printing debug information (bsc#1217946). * CVE-2022-2586: Fixed a use-after-free which can be triggered when a nft table is deleted (bsc#1202095). * CVE-2023-51779: Fixed a use-after-free because of a bt_sock_ioctl race condition in bt_sock_recvmsg (bsc#1218559). * CVE-2020-26555: Fixed Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B that may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN (bsc#1179610 bsc#1215237). * CVE-2023-6931: Fixed a heap out-of-bounds write vulnerability in the Linux

Topics%20covered

Topics Covered

security advisory kernel update bug fix SUSE security flaws system reboot

References

* bsc#1108281

* bsc#1109837

* bsc#1179610

* bsc#1202095

* bsc#1211226

* bsc#1211439

* bsc#1214479

* bsc#1215237

* bsc#1217036

* bsc#1217250

* bsc#1217801

* bsc#1217936

* bsc#1217946

* bsc#1217947

* bsc#1218057

* bsc#1218184

* bsc#1218253

* bsc#1218258

* bsc#1218362

* bsc#1218559

* bsc#1218622

* jsc#PED-5021

* jsc#PED-5023

Cross-

* CVE-2020-26555

* CVE-2022-2586

* CVE-2023-51779

* CVE-2023-6121

* CVE-2023-6606

* CVE-2023-6610

* CVE-2023-6931

* CVE-2023-6932

CVSS scores:

* CVE-2020-26555 ( SUSE ): 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

* CVE-2020-26555 ( NVD ): 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

* CVE-2022-2586 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-2586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:0113-1
Rating: important

Topics%20covered

Topics Covered

security advisory kernel update bug fix SUSE security flaws system reboot

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here