The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: * CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver . * CVE-2022-38096: Fixed NULL-ptr deref in vmw_cmd_dx_define_query . * CVE-2023-0045: Fixed missing Flush IBP in ib_prctl_set . * CVE-2023-0590: Fixed race condition in qdisc_graft . * CVE-2023-0597: Fixed lack of randomization of per-cpu entry area in x86/mm . * CVE-2023-1118: Fixed a use-after-free bugs caused by ene_tx_irqsim in media/rc . * CVE-2023-22995: Fixed lacks of certain platform_device_put and kfree in drivers/usb/dwc3/dwc3-qcom.c . * CVE-2023-22998: Fixed NULL vs IS_ERR checking in virtio_gpu_object_shmem_init . * CVE-2023-23000: Fixed return value of tegra_xusb_find_port_node function phy/tegra . * CVE-2023-23006: Fixed NULL vs IS_ERR checking in dr_domain_init_resources . * CVE-2023-23559: Fixed integer overflow in rndis_wlan that leads to a buffer overflow . * CVE-2023-26545: Fixed double free in net/mpls/af_mpls.c upon an allocation failure . The following non-security bugs were fixed: * cifs: fix use-after-free caused by invalid pointer `hostname` . * genirq: Provide new interfaces for affinity hints . * mm/slub: fix panic in slab_alloc_node . * module: Do not wait for GOING modules . * net: mana: Assign interrupts to CPUs based on NUMA nodes . * net: mana: Fix IRQ name - add PCI and queue number . * net: mana: Fix accessing freed irq affinity_hint . * refresh patches.kabi/scsi-kABI-fix-for-eh_should_retry_cmd . The former kABI fix only move the newly added member to scsi_host_template to the end of the struct. But that is usually allocated statically, even by 3rd party modules relying on kABI. Before we use the member we need to signalize that it is to be expected. As we only expect it to be allocated by in-tree modules that we can control, we can use a space in the bitfield to signalize that. * s390/kexec: fix ipl report address for kdump . * scsi: qla2xxx: Add option to disable FC2 Target support . * update suse/net-mlx5-Allocate-individual-capability . * update suse/net-mlx5-Dynamically-resize-flow-counters-query-buff . * update suse/net-mlx5-Fix-flow-counters-SF-bulk-query-len . * update suse/net-mlx5-Reduce-flow-counters-bulk-query-buffer-size . * update suse/net-mlx5-Reorganize-current-and-maximal-capabilities . * update suse/net-mlx5-Use-order-0-allocations-for-EQs . Fixed bugzilla reference. * vmxnet3: move rss code block under eop descriptor . ## Special Instructions and Notes: * Please reboot the system after installing this update.