[SUSE-SU-2023:4733-1] Security update for the Linux Kernel

Severity Important

Affected Packages 1

CVEs 7

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

CVE-2023-39197: Fixed a out-of-bounds read in nf_conntrack_dccp_packet() (bsc#1216976).
CVE-2023-6176: Fixed a denial of service in the cryptographic algorithm scatterwalk functionality (bsc#1217332).
CVE-2023-45863: Fixed a out-of-bounds write in fill_kobj_path() (bsc#1216058).
CVE-2023-45871: Fixed an issue in the IGB driver, where the buffer size may not be adequate for frames larger than the MTU (bsc#1216259).
CVE-2023-39198: Fixed a race condition leading to use-after-free in qxl_mode_dumb_create() (bsc#1216965).
CVE-2023-31083: Fixed race condition in hci_uart_tty_ioctl (bsc#1210780).
CVE-2023-5717: Fixed a heap out-of-bounds write vulnerability in the Performance Events component (bsc#1216584).

The following non-security bugs were fixed:

ALSA: hda: Disable power-save on KONTRON SinglePC (bsc#1217140).
Call flush_delayed_fput() from nfsd main-loop (bsc#1217408).
net: mana: Configure hwc timeout from hardware (bsc#1214037).
net: mana: Fix MANA VF unload when hardware is unresponsive (bsc#1214764).
powerpc: Do not clobber f0/vs0 during fp|altivec register save (bsc#1217780).

Package	Affected Version
pkg:rpm/suse/kernel-rt?arch=x86_64&distro=slem-5	< 5.3.18-150300.152.1

ID

SUSE-SU-2023:4733-1

Severity

important

URL

https://www.suse.com/support/update/announcement/2023/suse-su-20234733-1/

Published

2023-12-12T14:15:30
(9 months ago)

Modified

2023-12-12T14:15:30
(9 months ago)

Rights

Other Advisories

Source	Name	URL
Suse	SUSE ratings	https://www.suse.com/support/security/rating/
Suse	URL of this CSAF notice	https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_4733-1.json
Suse	URL for SUSE-SU-2023:4733-1	https://www.suse.com/support/update/announcement/2023/suse-su-20234733-1/
Suse	E-Mail link for SUSE-SU-2023:4733-1	https://lists.suse.com/pipermail/sle-updates/2023-December/033075.html
Bugzilla	SUSE Bug 1084909	https://bugzilla.suse.com/1084909
Bugzilla	SUSE Bug 1210780	https://bugzilla.suse.com/1210780
Bugzilla	SUSE Bug 1214037	https://bugzilla.suse.com/1214037
Bugzilla	SUSE Bug 1214344	https://bugzilla.suse.com/1214344
Bugzilla	SUSE Bug 1214764	https://bugzilla.suse.com/1214764
Bugzilla	SUSE Bug 1215371	https://bugzilla.suse.com/1215371
Bugzilla	SUSE Bug 1216058	https://bugzilla.suse.com/1216058
Bugzilla	SUSE Bug 1216259	https://bugzilla.suse.com/1216259
Bugzilla	SUSE Bug 1216584	https://bugzilla.suse.com/1216584
Bugzilla	SUSE Bug 1216965	https://bugzilla.suse.com/1216965
Bugzilla	SUSE Bug 1216976	https://bugzilla.suse.com/1216976
Bugzilla	SUSE Bug 1217140	https://bugzilla.suse.com/1217140
Bugzilla	SUSE Bug 1217332	https://bugzilla.suse.com/1217332
Bugzilla	SUSE Bug 1217408	https://bugzilla.suse.com/1217408
Bugzilla	SUSE Bug 1217780	https://bugzilla.suse.com/1217780
CVE	SUSE CVE CVE-2023-31083 page	https://www.suse.com/security/cve/CVE-2023-31083/
CVE	SUSE CVE CVE-2023-39197 page	https://www.suse.com/security/cve/CVE-2023-39197/
CVE	SUSE CVE CVE-2023-39198 page	https://www.suse.com/security/cve/CVE-2023-39198/
CVE	SUSE CVE CVE-2023-45863 page	https://www.suse.com/security/cve/CVE-2023-45863/
CVE	SUSE CVE CVE-2023-45871 page	https://www.suse.com/security/cve/CVE-2023-45871/
CVE	SUSE CVE CVE-2023-5717 page	https://www.suse.com/security/cve/CVE-2023-5717/
CVE	SUSE CVE CVE-2023-6176 page	https://www.suse.com/security/cve/CVE-2023-6176/

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:rpm/suse/kernel-rt?arch=x86_64&distro=slem-5	suse	kernel-rt	< 5.3.18-150300.152.1	slem-5	x86_64

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date