Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

SUSE: 2024:3499-1 important: Kernel Security Bugfixes and Updates

suse
Calendar Grey September 30, 2024
Dist Suse Esm H88
Important security patches for the SUSE Linux Kernel have been released to resolve various vulnerabilities. A system reboot is required following the installation.
* bsc#1196018 * bsc#1196823 * bsc#1202346 * bsc#1209636 * bsc#1209799

Summary

## The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2022-48791: Fix use-after-free for aborted TMF sas_task (bsc#1228002) * CVE-2024-44947: Initialize beyond-EOF page contents before setting uptodate (bsc#1229454). * CVE-2022-48919: Fix double free race when mount fails in cifs_get_root() (bsc#1229657). * CVE-2023-52854: Fix refcnt handling in padata_free_shell() (bsc#1225584). * CVE-2024-43883: Do not drop references before new references are gained (bsc#1229707). * CVE-2024-41062: Sync sock recv cb and release (bsc#1228576). * CVE-2024-43861: Fix memory leak for not ip packets (bsc#1229500). * CVE-2024-43882: Fixed ToCToU between perm check and set-uid/gid usage. (bsc#1229503)

References

* bsc#1196018

* bsc#1196823

* bsc#1202346

* bsc#1209636

* bsc#1209799

* bsc#1210629

* bsc#1216834

* bsc#1220185

* bsc#1220186

* bsc#1222251

* bsc#1222728

* bsc#1223948

* bsc#1225109

* bsc#1225584

* bsc#1227942

* bsc#1227969

* bsc#1227985

* bsc#1228002

* bsc#1228015

* bsc#1228114

* bsc#1228516

* bsc#1228576

* bsc#1228959

* bsc#1229400

* bsc#1229454

* bsc#1229500

* bsc#1229503

* bsc#1229510

* bsc#1229512

* bsc#1229607

* bsc#1229630

* bsc#1229641

* bsc#1229657

* bsc#1229707

Cross-

* CVE-2022-0854

* CVE-2022-20368

* CVE-2022-28748

* CVE-2022-2964

* CVE-2022-48686

* CVE-2022-48791

* CVE-2022-48802

* CVE-2022-48805

* CVE-2022-48839

* CVE-2022-48853

* CVE-2022-48872

* CVE-2022-48873

* CVE-2022-48901

* CVE-2022-48912

* CVE-2022-48919

* CVE-2022-48925

* CVE-2023-1582

* CVE-2023-2176

* CVE-2023-52854

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:3499-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here