SUSE-SU-2023:0778-1 -- SLES kernel, reiserfs-kmp-defaultID: oval:org.secpod.oval:def:89048688 | Date: (C)2023-04-11 (M)2024-04-29 |
Class: PATCH | Family: unix |
The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. * CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver . * CVE-2022-38096: Fixed NULL-ptr deref in vmw_cmd_dx_define_query . * CVE-2023-0045: Fixed missing Flush IBP in ib_prctl_set . * CVE-2023-0590: Fixed race condition in qdisc_graft . * CVE-2023-0597: Fixed lack of randomization of per-cpu entry area in x86/mm . * CVE-2023-1118: Fixed a use-after-free bugs caused by ene_tx_irqsim in media/rc . * CVE-2023-22995: Fixed lacks of certain platform_device_put and kfree in drivers/usb/dwc3/dwc3-qcom.c . * CVE-2023-23000: Fixed return value of tegra_xusb_find_port_node function phy/tegra . * CVE-2023-23006: Fixed NULL vs IS_ERR checking in dr_domain_init_resources . * CVE-2023-23559: Fixed integer overflow in rndis_wlan that leads to a buffer overflow . * CVE-2023-26545: Fixed double free in net/mpls/af_mpls.c upon an allocation failure . The following non-security bugs were fixed: * cifs: fix use-after-free caused by invalid pointer `hostname` . * genirq: Provide new interfaces for affinity hints . * mm/slub: fix panic in slab_alloc_node . * module: Do not wait for GOING modules . * net: mana: Assign interrupts to CPUs based on NUMA nodes . * net: mana: Fix IRQ name - add PCI and queue number . * net: mana: Fix accessing freed irq affinity_hint . * nfsd: fix use-after-free due to delegation race . * rdma/core: Fix ib block iterator counter overflow . * vmxnet3: move rss code block under eop descriptor . ## Special Instructions and Notes: * Please reboot the system after installing this update.
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
Product: |
kernel |
reiserfs-kmp-default |