SUSE 12 SP5: 2024:3037-1 Important Critical Kernel Patch

suse

August 27, 2024

* bsc#1210619 * bsc#1220145 * bsc#1220537 * bsc#1222685 * bsc#1223059

Summary

## This update for the Linux Kernel 4.12.14-122_201 fixes several issues. The following security issues were fixed: * CVE-2021-47378: Fixed use-after-free by destroying cm id before destroying qp (bsc#1225202). * CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013). * CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310). * CVE-2021-47383: Fixed out-of-bound vmalloc access in imageblit (bsc#1225211). * CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683). * CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681). * CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363). * CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when

Topics Covered

security advisory threat mitigation important update linux kernel suse linux

References

* bsc#1210619

* bsc#1220145

* bsc#1220537

* bsc#1222685

* bsc#1223059

* bsc#1223363

* bsc#1223514

* bsc#1223681

* bsc#1223683

* bsc#1225013

* bsc#1225202

* bsc#1225211

* bsc#1225310

Cross-

* CVE-2021-46955

* CVE-2021-47378

* CVE-2021-47383

* CVE-2022-48651

* CVE-2023-1829

* CVE-2023-6546

* CVE-2024-23307

* CVE-2024-26828

* CVE-2024-26852

* CVE-2024-26923

* CVE-2024-26930

* CVE-2024-27398

* CVE-2024-35950

CVSS scores:

* CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

* CVE-2021-47378 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2021-47383 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2022-48651 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2024:3037-1

Rating: important

Topics Covered

security advisory threat mitigation important update linux kernel suse linux

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

SUSE 12 SP5: 2024:3037-1 Important Critical Kernel Patch

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

SUSE 12 SP5: 2024:3037-1 Important Critical Kernel Patch

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!