Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE: 2024:4226-1 Important: Fix Kernel Security Issues

suse
Calendar Grey December 6, 2024
Dist Suse Esm H88
Fix for significant kernel issues including memory leaks and privilege escalations in SUSE's latest update.
* bsc#1210619 * bsc#1220145 * bsc#1220537 * bsc#1222685 * bsc#1223059

Summary

## This update for the Linux Kernel 4.12.14-122_201 fixes several issues. The following security issues were fixed: * CVE-2024-43861: Fix memory leak for not ip packets (bsc#1229553). * CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks (bsc#1229273). * CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1225011). * CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225819). * CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1225311). * CVE-2024-35867: Fixed potential UAF in cifs_stats_proc_show() (bsc#1225012). * CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1225309). * CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228573).

Topics%20covered

Topics Covered

No topics assigned

References

* bsc#1210619

* bsc#1220145

* bsc#1220537

* bsc#1222685

* bsc#1223059

* bsc#1223363

* bsc#1223514

* bsc#1223681

* bsc#1223683

* bsc#1225011

* bsc#1225012

* bsc#1225013

* bsc#1225202

* bsc#1225211

* bsc#1225309

* bsc#1225310

* bsc#1225311

* bsc#1225819

* bsc#1226325

* bsc#1228573

* bsc#1229273

* bsc#1229553

Cross-

* CVE-2021-46955

* CVE-2021-47378

* CVE-2021-47383

* CVE-2022-48651

* CVE-2023-1829

* CVE-2023-52752

* CVE-2023-6546

* CVE-2024-23307

* CVE-2024-26828

* CVE-2024-26852

* CVE-2024-26923

* CVE-2024-26930

* CVE-2024-27398

* CVE-2024-35862

* CVE-2024-35863

* CVE-2024-35864

* CVE-2024-35867

* CVE-2024-35949

* CVE-2024-35950

* CVE-2024-36964

* CVE-2024-41059

* CVE-2024-43861

CVSS scores:

* CVE-2021-46955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:4226-1
Release Date: 2024-12-06T10:03:42Z
Rating: important

Topics%20covered

Topics Covered

No topics assigned

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here