Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 105 articles for you...
203
security advisorydenial of servicebuffer overflowMageia 9: MGASA-2024-0246 Moderate: GDB Memory Issues and Threats
An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information may result in a denial of service. This issue is the result of an incomplete fix for CVE-2020-16599. (CVE-2022-4285) A potential heap based buffer overflow was found in . MGASA-2024-0246 - Updated gdb packages fix security vulnerabilities Publication date: 01 Jul 2024 URL: https://advisories.mageia.org/MGASA-2024-0246.html Type: security Affected Mageia releases: 9 CVE: CVE-2022-4285, CVE-2023-1972, CVE-2023-39128, CVE-2023-39129, CVE-2023-39130 An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information may result in a denial of service. This issue is the result of an incomplete fix for CVE-2020-16599. (CVE-2022-4285) A potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf.c. This may lead to loss of availability. (CVE-2023-1972) GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a stack overflow via the function ada_decode at /gdb/ada-lang.c. (CVE-2023-39128) GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap use after free via the function add_pe_exported_sym() at /gdb/coff-pe-read.c. (CVE-2023-39129) GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function pe_as16() at /gdb/coff-pe-read.c. (CVE-2023-39130) References: - https://bugs.mageia.org/show_bug.cgi?id=33319 - https://ubuntu.com/security/notices/USN-6842-1 - https://www.cve.org/CVERecord?id=CVE-2022-4285 - https://www.cve.org/CVERecord?id=CVE-2023-1972 - https://www.cve.org/CVERecord?id=CVE-2023-39128 - https://www.cve.org/CVERecord?id=CVE-2023-39129 - https://www.cve.org/CVERecord?id=CVE-2023-39130 SRPMS: - 9/core/gdb-12.1-7.1.mga9 . Recent updates to gdb packages resolve significant security concerns associated with vulnerabilities within Mageia. Prompt attention is recommended.. gdb security,Mageia securityadvisory,heap overflow,denial of service,memory issue. . LinuxSecurity.com Team
Jul 01, 2024
Mageia
100
security advisoryimportantheap overflowSUSE 15 SP2: SUSE-SU-2024:1493-1 Important Kernel Issues
* bsc#1216644 * bsc#1219079 * bsc#1219435 Cross-References: . # Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP2) Announcement ID: SUSE-SU-2024:1493-1 Rating: important References: * bsc#1216644 * bsc#1219079 * bsc#1219435 Cross-References: * CVE-2023-5717 * CVE-2024-0775 * CVE-2024-1086 CVSS scores: * CVE-2023-5717 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-5717 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0775 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-0775 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-1086 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-1086 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150200_24_169 fixes several issues. The following security issues were fixed: * CVE-2024-0775: Fixed a use-after-free flaw was found in the __ext4_remount in fs/ext4/super.c in ext4 (bsc#1219079). * CVE-2023-5717: Fixed a heap out-of-bounds write vulnerability perf component (bsc#1216644). * CVE-2024-1086: Fixed a use-after-free vulnerability related to nft_verdict_init() (bsc#1219435). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2024-1493=1 SUSE-SLE-Live- Patching-12-SP5-2024-1494=1 * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-1495=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_162-default-12-2.1 * kgraft-patch-4_12_14-122_165-default-11-2.1 * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_169-default-8-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_42-debugsource-8-150200.2.1 * kernel-livepatch-5_3_18-150200_24_169-default-debuginfo-8-150200.2.1 ## References: * https://www.suse.com/security/cve/CVE-2023-5717.html * https://www.suse.com/security/cve/CVE-2024-0775.html * https://www.suse.com/security/cve/CVE-2024-1086.html * https://bugzilla.suse.com/show_bug.cgi?id=1216644 * https://bugzilla.suse.com/show_bug.cgi?id=1219079 * https://bugzilla.suse.com/show_bug.cgi?id=1219435 . SUSE issues a critical security notice regarding the Linux Kernel, targeting heap vulnerabilities and memory issues for SLE 15 SP2.. Linux Kernel Update,SUSE Live Patching,Security Fix. . Severity: Important. LinuxSecurity.com Team
May 06, 2024
•Important
SuSE
100
security advisorycriticalDoSSUSE: 2024:1318-1 Critical: Linux Kernel Live Patch for DoS Issues
* bsc#1219078 * bsc#1219296 * bsc#1219432 Cross-References: . # Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP4) Announcement ID: SUSE-SU-2024:1318-1 Rating: important References: * bsc#1219078 * bsc#1219296 * bsc#1219432 Cross-References: * CVE-2023-52340 * CVE-2024-0565 * CVE-2024-1085 CVSS scores: * CVE-2023-52340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( NVD ): 7.4 CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2024-1085 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-1085 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_97 fixes several issues. The following security issues were fixed: * CVE-2024-0565: Fixed an out-of-bounds memory read flaw in receive_encrypted_standard in fs/smb/client/smb2ops.c (bsc#1219078). * CVE-2024-1085: Fixed nf_tables use-after-free vulnerability in the nft_setelem_catchall_deactivate() function (bsc#1219432). * CVE-2023-52340: Fixed ICMPv6 âPacket Too Bigâ packets force a DoS of the Linux kernel by forcing 100% CPU (bsc#1219296). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patchSUSE-SLE-Module-Live-Patching-15-SP4-2024-1318=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-1318=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_97-default-debuginfo-5-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_20-debugsource-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_97-default-5-150400.2.1 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_97-default-debuginfo-5-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_20-debugsource-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_97-default-5-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2023-52340.html * https://www.suse.com/security/cve/CVE-2024-0565.html * https://www.suse.com/security/cve/CVE-2024-1085.html * https://bugzilla.suse.com/show_bug.cgi?id=1219078 * https://bugzilla.suse.com/show_bug.cgi?id=1219296 * https://bugzilla.suse.com/show_bug.cgi?id=1219432 . Essential security enhancements for the Linux Kernel (Live Patch 20) tackle significant vulnerabilities and boost overall system performance.. Linux Kernel Patch, Security Updates, SUSE Live Patching, Critical Threats. . Severity: Critical. LinuxSecurity.com Team
Apr 16, 2024
•Critical
SuSE
100
security advisorykernel updateDoSSUSE: 2024:1292-1 Important: Linux Kernel DoS and Memory Flaw Fix
* bsc#1219078 * bsc#1219296 * bsc#1219432 Cross-References: . # Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP4) Announcement ID: SUSE-SU-2024:1292-1 Rating: important References: * bsc#1219078 * bsc#1219296 * bsc#1219432 Cross-References: * CVE-2023-52340 * CVE-2024-0565 * CVE-2024-1085 CVSS scores: * CVE-2023-52340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( NVD ): 7.4 CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2024-1085 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-1085 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150400_24_92 fixes several issues. The following security issues were fixed: * CVE-2024-0565: Fixed an out-of-bounds memory read flaw in receive_encrypted_standard in fs/smb/client/smb2ops.c (bsc#1219078). * CVE-2024-1085: Fixed nf_tables use-after-free vulnerability in the nft_setelem_catchall_deactivate() function (bsc#1219432). * CVE-2023-52340: Fixed ICMPv6 âPacket Too Bigâ packets force a DoS of the Linux kernel by forcing 100% CPU (bsc#1219296). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in-t patch SUSE-2024-1292=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2024-1292=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_92-default-6-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_19-debugsource-6-150400.2.1 * kernel-livepatch-5_14_21-150400_24_92-default-debuginfo-6-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_92-default-6-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_19-debugsource-6-150400.2.1 * kernel-livepatch-5_14_21-150400_24_92-default-debuginfo-6-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2023-52340.html * https://www.suse.com/security/cve/CVE-2024-0565.html * https://www.suse.com/security/cve/CVE-2024-1085.html * https://bugzilla.suse.com/show_bug.cgi?id=1219078 * https://bugzilla.suse.com/show_bug.cgi?id=1219296 * https://bugzilla.suse.com/show_bug.cgi?id=1219432 . Recent updates for the Linux Kernel live patch tackle vulnerabilities that could cause Denial of Service and memory issues in SUSE systems, with detailed security advisory provided. Linux Kernel Security, SUSE Security Advisory, Kernel Update. . Severity: Important. LinuxSecurity.com Team
Apr 15, 2024
•Important
SuSE
100
security advisorysecurity fixkernel patchSUSE: 2024:1251-1 Important: Kernel Patch Security Updates
* bsc#1218613 * bsc#1219078 * bsc#1219296 * bsc#1219432 . # Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP5) Announcement ID: SUSE-SU-2024:1251-1 Rating: important References: * bsc#1218613 * bsc#1219078 * bsc#1219296 * bsc#1219432 Cross-References: * CVE-2023-42753 * CVE-2023-52340 * CVE-2024-0565 * CVE-2024-1085 CVSS scores: * CVE-2023-42753 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-42753 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( NVD ): 7.4 CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2024-1085 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-1085 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves four vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.14.21-150500_55_28 fixes several issues. The following security issues were fixed: * CVE-2024-0565: Fixed an out-of-bounds memory read flaw in receive_encrypted_standard in fs/smb/client/smb2ops.c (bsc#1219078). * CVE-2023-42753: Fixed an array indexing vulnerability in the netfilter subsystem. This issue may have allowed a local user to crash the system or potentially escalate their privileges (bsc#1218613). * CVE-2024-1085: Fixed nf_tables use-after-free vulnerability in the nft_setelem_catchall_deactivate() function (bsc#1219432). * CVE-2023-52340: FixedICMPv6 âPacket Too Bigâ packets force a DoS of the Linux kernel by forcing 100% CPU (bsc#1219296). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-1251=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-1251=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_28-default-7-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_5-debugsource-7-150500.2.1 * kernel-livepatch-5_14_21-150500_55_28-default-debuginfo-7-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_28-default-7-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_5-debugsource-7-150500.2.1 * kernel-livepatch-5_14_21-150500_55_28-default-debuginfo-7-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2023-42753.html * https://www.suse.com/security/cve/CVE-2023-52340.html * https://www.suse.com/security/cve/CVE-2024-0565.html * https://www.suse.com/security/cve/CVE-2024-1085.html * https://bugzilla.suse.com/show_bug.cgi?id=1218613 * https://bugzilla.suse.com/show_bug.cgi?id=1219078 * https://bugzilla.suse.com/show_bug.cgi?id=1219296 * https://bugzilla.suse.com/show_bug.cgi?id=1219432 . Enhance protection against potential security risks by implementing the newest SUSE Linux kernel patches that rectify a variety of flaws and concerns.. SUSE Kernel Update,Linux Security Patches,Kernal Vulnerability Fixes,System Update Management. . Severity: Important. LinuxSecurity.com Team
Apr 11, 2024
•Important
SuSE
100
security advisorycriticalDoSSUSE: 2024:1246-1 Important: Kernel Update DoS and Memory Flaw
* bsc#1218613 * bsc#1219078 * bsc#1219296 Cross-References: . # Security update for the Linux Kernel (Live Patch 36 for SLE 15 SP3) Announcement ID: SUSE-SU-2024:1246-1 Rating: important References: * bsc#1218613 * bsc#1219078 * bsc#1219296 Cross-References: * CVE-2023-42753 * CVE-2023-52340 * CVE-2024-0565 CVSS scores: * CVE-2023-42753 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-42753 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-52340 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( NVD ): 7.4 CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves three vulnerabilities can now be installed. ## Description: This update for the Linux Kernel 5.3.18-150300_59_133 fixes several issues. The following security issues were fixed: * CVE-2024-0565: Fixed an out-of-bounds memory read flaw in receive_encrypted_standard in fs/smb/client/smb2ops.c (bsc#1219078). * CVE-2023-42753: Fixed an array indexing vulnerability in the netfilter subsystem. This issue may have allowed a local user to crash the system or potentially escalate their privileges (bsc#1218613). * CVE-2023-52340: Fixed ICMPv6 âPacket Too Bigâ packets force a DoS of the Linux kernel by forcing 100% CPU (bsc#1219296). ##Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-1246=1 SUSE-SLE- Module-Live-Patching-15-SP2-2024-1220=1 SUSE-SLE-Module-Live- Patching-15-SP2-2024-1221=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-1222=1 SUSE-SLE-Module-Live-Patching-15-SP2-2024-1223=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-1230=1 SUSE-2024-1237=1 SUSE-2024-1242=1 SUSE-2024-1232=1 SUSE-2024-1233=1 SUSE-2024-1234=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2024-1230=1 SUSE-SLE- Module-Live-Patching-15-SP3-2024-1237=1 SUSE-SLE-Module-Live- Patching-15-SP3-2024-1242=1 SUSE-SLE-Module-Live-Patching-15-SP3-2024-1232=1 SUSE-SLE-Module-Live-Patching-15-SP3-2024-1233=1 SUSE-SLE-Module-Live- Patching-15-SP3-2024-1234=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150200_24_154-default-10-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_34-debugsource-13-150200.2.1 * kernel-livepatch-5_3_18-150200_24_160-default-8-150200.2.1 * kernel-livepatch-5_3_18-150200_24_151-default-debuginfo-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_38-debugsource-9-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-debuginfo-9-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_39-debugsource-8-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_36-debugsource-12-150200.2.1 * kernel-livepatch-SLE15-SP2_Update_37-debugsource-10-150200.2.1 * kernel-livepatch-5_3_18-150200_24_157-default-9-150200.2.1 * kernel-livepatch-5_3_18-150200_24_151-default-12-150200.2.1 * kernel-livepatch-5_3_18-150200_24_145-default-13-150200.2.1 *kernel-livepatch-5_3_18-150200_24_160-default-debuginfo-8-150200.2.1 * kernel-livepatch-5_3_18-150200_24_154-default-debuginfo-10-150200.2.1 * kernel-livepatch-5_3_18-150200_24_145-default-debuginfo-13-150200.2.1 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_118-default-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_115-default-debuginfo-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-default-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_127-default-9-150300.2.1 * kernel-livepatch-5_3_18-150300_59_118-default-debuginfo-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_121-default-debuginfo-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_127-default-debuginfo-9-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_36-debugsource-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_124-default-debuginfo-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_124-default-10-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_33-debugsource-10-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_34-debugsource-9-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_32-debugsource-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_121-default-12-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_31-debugsource-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-default-debuginfo-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_115-default-13-150300.2.1 * kernel-livepatch-SLE15-SP3_Update_30-debugsource-13-150300.2.1 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_127-preempt-9-150300.2.1 * kernel-livepatch-5_3_18-150300_59_118-preempt-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_124-preempt-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-preempt-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_121-preempt-debuginfo-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_121-preempt-12-150300.2.1 *kernel-livepatch-5_3_18-150300_59_115-preempt-debuginfo-13-150300.2.1 * kernel-livepatch-5_3_18-150300_59_118-preempt-debuginfo-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_127-preempt-debuginfo-9-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-preempt-debuginfo-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_124-preempt-debuginfo-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_115-preempt-13-150300.2.1 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-livepatch-5_3_18-150300_59_118-default-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_133-default-7-150300.2.1 * kernel-livepatch-5_3_18-150300_59_127-default-9-150300.2.1 * kernel-livepatch-5_3_18-150300_59_124-default-10-150300.2.1 * kernel-livepatch-5_3_18-150300_59_121-default-12-150300.2.1 * kernel-livepatch-5_3_18-150300_59_115-default-13-150300.2.1 ## References: * https://www.suse.com/security/cve/CVE-2023-42753.html * https://www.suse.com/security/cve/CVE-2023-52340.html * https://www.suse.com/security/cve/CVE-2024-0565.html * https://bugzilla.suse.com/show_bug.cgi?id=1218613 * https://bugzilla.suse.com/show_bug.cgi?id=1219078 * https://bugzilla.suse.com/show_bug.cgi?id=1219296 . Apply necessary security updates for the SUSE Linux Kernel to mitigate severe vulnerabilities such as memory exposure and denial of service problems.. Linux Kernel Security,SUSE Update,Memory Read Flaw,Kernel Patch. . Severity: Important. LinuxSecurity.com Team
Apr 11, 2024
•Important
SuSE
89
security advisoryhigh severityfedoraFedora 40: FEDORA-2024-5dacab5f00 High: Chromium Memory Flaws
upstream security release 122.0.6261.111 High CVE-2024-2173: Out of bounds memory access in V8 High CVE-2024-2174: Inappropriate implementation in V8 High CVE-2024-2176: Use after free in FedCM. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-5dacab5f00 2024-03-23 00:20:56.400159 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 40 Version : 122.0.6261.111 Release : 1.fc40 URL : https://www.chromium.org/Home/ Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: upstream security release 122.0.6261.111 High CVE-2024-2173: Out of bounds memory access in V8 High CVE-2024-2174: Inappropriate implementation in V8 High CVE-2024-2176: Use after free in FedCM -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 6 2024 Than Ngo - 122.0.6261.111-1 - upstream security release 122.0.6261.111 * High CVE-2024-2173: Out of bounds memory access in V8 * High CVE-2024-2174: Inappropriate implementation in V8 * High CVE-2024-2176: Use after free in FedCM -------------------------------------------------------------------------------- References: [ 1 ] Bug #2268540 - CVE-2024-2173 CVE-2024-2174 CVE-2024-2176 chromium: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2268540 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-5dacab5f00' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html Allpackages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 23, 2024
Fedora
100
security advisorylocal privilegekernel updateSUSE Linux Enterprise 15 SP2: 2024:0478-1 Important Kernel Update
* bsc#1108281 * bsc#1193285 * bsc#1215275 * bsc#1216702 * bsc#1217987 . # Security update for the Linux Kernel Announcement ID: SUSE-SU-2024:0478-1 Rating: important References: * bsc#1108281 * bsc#1193285 * bsc#1215275 * bsc#1216702 * bsc#1217987 * bsc#1217988 * bsc#1217989 * bsc#1218713 * bsc#1218730 * bsc#1218752 * bsc#1218757 * bsc#1218768 * bsc#1218804 * bsc#1218832 * bsc#1218836 * bsc#1219053 * bsc#1219120 * bsc#1219412 * bsc#1219434 Cross-References: * CVE-2021-33631 * CVE-2023-46838 * CVE-2023-47233 * CVE-2023-4921 * CVE-2023-51043 * CVE-2023-51780 * CVE-2023-51782 * CVE-2023-6040 * CVE-2023-6356 * CVE-2023-6535 * CVE-2023-6536 * CVE-2023-6915 * CVE-2024-0565 * CVE-2024-0775 * CVE-2024-1086 CVSS scores: * CVE-2021-33631 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2021-33631 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-46838 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2023-46838 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-47233 ( SUSE ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-47233 ( NVD ): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-4921 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-4921 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51043 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51043 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51780 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51780 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51782 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-51782 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6040 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2023-6040 ( NVD ): 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-6356 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6535 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6536 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6915 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-6915 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0565 ( NVD ): 7.4 CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2024-0775 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-0775 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2024-1086 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-1086 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise High Availability Extension 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Live Patching 15-SP2 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP2 Business Critical Linux 15-SP2 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Manager Proxy 4.1 * SUSE Manager Retail Branch Server 4.1 * SUSE Manager Server 4.1 An update that solves 15 vulnerabilities and has four security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP2 LTSS kernel was updated to receive various security bugfixes. The following security bugs were fixed: * CVE-2024-1086: Fixed a use-after-free vulnerability inside the nf_tables component that could have been exploited to achieve local privilege escalation (bsc#1219434). * CVE-2024-0775: Fixed use-after-free in __ext4_remount in fs/ext4/super.c that could allow a local user to cause aninformation leak problem while freeing the old quota file names before a potential failure (bsc#1219053). * CVE-2024-0565: Fixed an out-of-bounds memory read flaw in receive_encrypted_standard in fs/smb/client/smb2ops.c (bsc#1218832). * CVE-2023-6915: Fixed a NULL pointer dereference problem in ida_free in lib/idr.c (bsc#1218804). * CVE-2023-6536: Fixed a NULL pointer dereference in __nvmet_req_complete (bsc#1217989). * CVE-2023-6535: Fixed a NULL pointer dereference in nvmet_tcp_execute_request (bsc#1217988). * CVE-2023-6356: Fixed a NULL pointer dereference in nvmet_tcp_build_pdu_iovec (bsc#1217987). * CVE-2023-6040: Fixed an out-of-bounds access vulnerability while creating a new netfilter table, lack of a safeguard against invalid nf_tables family (pf) values within `nf_tables_newtable` function (bsc#1218752). * CVE-2023-51782: Fixed use-after-free in rose_ioctl in net/rose/af_rose.c because of a rose_accept race condition (bsc#1218757). * CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218730). * CVE-2023-51043: Fixed use-after-free during a race condition between a nonblocking atomic commit and a driver unload in drivers/gpu/drm/drm_atomic.c (bsc#1219120). * CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215275). * CVE-2023-47233: Fixed a use-after-free in the device unplugging (disconnect the USB by hotplug) code inside the brcm80211 component (bsc#1216702). * CVE-2023-46838: Fixed an issue with Xen netback processing of zero-length transmit fragment (bsc#1218836). * CVE-2021-33631: Fixed an integer overflow in ext4_write_inline_data_end() (bsc#1219412). The following non-security bugs were fixed: * build: Limit kernel-source build to architectures for which the kernel binary is built (bsc#1108281). * docs: Store the old kernelchangelog entries in kernel-docs package (bsc#1218713) * mkspec: Include constraints for both multibuild and plain package always * rpm/kernel-docs.spec.in: fix build with 6.8 Since upstream commit f061c9f7d058 * rpm/kernel-source.rpmlintrc: add action-ebpf Upstream commit a79d8ba734bd * rpm/mkspec: use kernel-source: prefix for constraints on multibuild Otherwise the constraints are not applied with multibuild enabled. * x86/entry/ia32: Ensure s32 is sign extended to s64 (bsc#1193285). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP2 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP2-2024-478=1 * SUSE Linux Enterprise High Availability Extension 15 SP2 zypper in -t patch SUSE-SLE-Product-HA-15-SP2-2024-478=1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-478=1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-478=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-478=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP2 (nosrc) * kernel-default-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Live Patching 15-SP2 (ppc64le s390x x86_64) * kernel-default-debuginfo-5.3.18-150200.24.178.1 * kernel-livepatch-5_3_18-150200_24_178-default-1-150200.5.3.1 * kernel-livepatch-5_3_18-150200_24_178-default-debuginfo-1-150200.5.3.1 * kernel-livepatch-SLE15-SP2_Update_45-debugsource-1-150200.5.3.1 * kernel-default-livepatch-devel-5.3.18-150200.24.178.1 * kernel-default-debugsource-5.3.18-150200.24.178.1 *kernel-default-livepatch-5.3.18-150200.24.178.1 * SUSE Linux Enterprise High Availability Extension 15 SP2 (aarch64 ppc64le s390x x86_64) * kernel-default-debuginfo-5.3.18-150200.24.178.1 * cluster-md-kmp-default-debuginfo-5.3.18-150200.24.178.1 * cluster-md-kmp-default-5.3.18-150200.24.178.1 * ocfs2-kmp-default-5.3.18-150200.24.178.1 * dlm-kmp-default-debuginfo-5.3.18-150200.24.178.1 * gfs2-kmp-default-debuginfo-5.3.18-150200.24.178.1 * ocfs2-kmp-default-debuginfo-5.3.18-150200.24.178.1 * kernel-default-debugsource-5.3.18-150200.24.178.1 * gfs2-kmp-default-5.3.18-150200.24.178.1 * dlm-kmp-default-5.3.18-150200.24.178.1 * SUSE Linux Enterprise High Availability Extension 15 SP2 (nosrc) * kernel-default-5.3.18-150200.24.178.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 nosrc x86_64) * kernel-default-5.3.18-150200.24.178.1 * kernel-preempt-5.3.18-150200.24.178.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * kernel-obs-build-debugsource-5.3.18-150200.24.178.1 * kernel-default-debuginfo-5.3.18-150200.24.178.1 * kernel-obs-build-5.3.18-150200.24.178.1 * kernel-preempt-devel-debuginfo-5.3.18-150200.24.178.1 * kernel-default-devel-5.3.18-150200.24.178.1 * kernel-preempt-debuginfo-5.3.18-150200.24.178.1 * kernel-preempt-devel-5.3.18-150200.24.178.1 * kernel-preempt-debugsource-5.3.18-150200.24.178.1 * kernel-default-debugsource-5.3.18-150200.24.178.1 * kernel-default-base-5.3.18-150200.24.178.1.150200.9.91.1 * kernel-syms-5.3.18-150200.24.178.1 * kernel-default-devel-debuginfo-5.3.18-150200.24.178.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch) * kernel-source-5.3.18-150200.24.178.1 * kernel-devel-5.3.18-150200.24.178.1 * kernel-macros-5.3.18-150200.24.178.1 * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch nosrc) *kernel-docs-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x x86_64) * kernel-obs-build-debugsource-5.3.18-150200.24.178.1 * kernel-default-debuginfo-5.3.18-150200.24.178.1 * kernel-obs-build-5.3.18-150200.24.178.1 * kernel-default-devel-5.3.18-150200.24.178.1 * reiserfs-kmp-default-5.3.18-150200.24.178.1 * kernel-default-debugsource-5.3.18-150200.24.178.1 * kernel-default-base-5.3.18-150200.24.178.1.150200.9.91.1 * kernel-syms-5.3.18-150200.24.178.1 * reiserfs-kmp-default-debuginfo-5.3.18-150200.24.178.1 * kernel-default-devel-debuginfo-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch) * kernel-source-5.3.18-150200.24.178.1 * kernel-devel-5.3.18-150200.24.178.1 * kernel-macros-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch nosrc) * kernel-docs-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 x86_64) * kernel-preempt-debuginfo-5.3.18-150200.24.178.1 * kernel-preempt-devel-5.3.18-150200.24.178.1 * kernel-preempt-devel-debuginfo-5.3.18-150200.24.178.1 * kernel-preempt-debugsource-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (nosrc ppc64le x86_64) * kernel-default-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64) * kernel-obs-build-debugsource-5.3.18-150200.24.178.1 * kernel-default-debuginfo-5.3.18-150200.24.178.1 * kernel-obs-build-5.3.18-150200.24.178.1 * kernel-default-devel-5.3.18-150200.24.178.1 * reiserfs-kmp-default-5.3.18-150200.24.178.1 * kernel-default-debugsource-5.3.18-150200.24.178.1 *kernel-default-base-5.3.18-150200.24.178.1.150200.9.91.1 * kernel-syms-5.3.18-150200.24.178.1 * reiserfs-kmp-default-debuginfo-5.3.18-150200.24.178.1 * kernel-default-devel-debuginfo-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch) * kernel-source-5.3.18-150200.24.178.1 * kernel-devel-5.3.18-150200.24.178.1 * kernel-macros-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch nosrc) * kernel-docs-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (nosrc x86_64) * kernel-preempt-5.3.18-150200.24.178.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64) * kernel-preempt-debuginfo-5.3.18-150200.24.178.1 * kernel-preempt-devel-5.3.18-150200.24.178.1 * kernel-preempt-devel-debuginfo-5.3.18-150200.24.178.1 * kernel-preempt-debugsource-5.3.18-150200.24.178.1 ## References: * https://www.suse.com/security/cve/CVE-2021-33631.html * https://www.suse.com/security/cve/CVE-2023-46838.html * https://www.suse.com/security/cve/CVE-2023-47233.html * https://www.suse.com/security/cve/CVE-2023-4921.html * https://www.suse.com/security/cve/CVE-2023-51043.html * https://www.suse.com/security/cve/CVE-2023-51780.html * https://www.suse.com/security/cve/CVE-2023-51782.html * https://www.suse.com/security/cve/CVE-2023-6040.html * https://www.suse.com/security/cve/CVE-2023-6356.html * https://www.suse.com/security/cve/CVE-2023-6535.html * https://www.suse.com/security/cve/CVE-2023-6536.html * https://www.suse.com/security/cve/CVE-2023-6915.html * https://www.suse.com/security/cve/CVE-2024-0565.html * https://www.suse.com/security/cve/CVE-2024-0775.html * https://www.suse.com/security/cve/CVE-2024-1086.html * https://bugzilla.suse.com/show_bug.cgi?id=1108281 * https://bugzilla.suse.com/show_bug.cgi?id=1193285 * https://bugzilla.suse.com/show_bug.cgi?id=1215275 * https://bugzilla.suse.com/show_bug.cgi?id=1216702 *https://bugzilla.suse.com/show_bug.cgi?id=1217987 * https://bugzilla.suse.com/show_bug.cgi?id=1217988 * https://bugzilla.suse.com/show_bug.cgi?id=1217989 * https://bugzilla.suse.com/show_bug.cgi?id=1218713 * https://bugzilla.suse.com/show_bug.cgi?id=1218730 * https://bugzilla.suse.com/show_bug.cgi?id=1218752 * https://bugzilla.suse.com/show_bug.cgi?id=1218757 * https://bugzilla.suse.com/show_bug.cgi?id=1218768 * https://bugzilla.suse.com/show_bug.cgi?id=1218804 * https://bugzilla.suse.com/show_bug.cgi?id=1218832 * https://bugzilla.suse.com/show_bug.cgi?id=1218836 * https://bugzilla.suse.com/show_bug.cgi?id=1219053 * https://bugzilla.suse.com/show_bug.cgi?id=1219120 * https://bugzilla.suse.com/show_bug.cgi?id=1219412 * https://bugzilla.suse.com/show_bug.cgi?id=1219434 . An essential patch for the SUSE Linux Kernel resolves 15 vulnerabilities along with various security concerns. Ensure to update without delay.. SUSE Linux Kernel Update, Privilege Escalation, Linux Security Patch. . Severity: Important. LinuxSecurity.com Team
Feb 15, 2024
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!