1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2024:1749-1

[SUSE-SU-2024:1749-1] Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP4)

Severity Important
CVEs 8
Info References Vulnerabilities

Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-150400_24_108 fixes several issues.

The following security issues were fixed:

  • CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302).
  • CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514).
  • CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222882).
  • CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220832).
  • CVE-2024-26585: Fixed race between tx work scheduling and socket close for tls (bsc#1220211).
  • CVE-2023-6546: Fixed a race condition that could lead to a use-after-free in the GSM 0710 tty multiplexor (bsc#1222685).
  • CVE-2024-26622: Fixed a use-after-free with tomoyo_write_control() (bsc#1220828).
  • CVE-2023-52340: Fixed a denial of service related to ICMPv6 'Packet Too Big' packets (bsc#1219296).
ID
SUSE-SU-2024:1749-1
Severity
important
URL
https://www.suse.com/support/update/announcement/2024/suse-su-20241749-1/
Published
2024-05-22T11:04:14
(3 months ago)
Modified
2024-05-22T11:04:14
(3 months ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Source # ID Name URL
Suse SUSE ratings https://www.suse.com/support/security/rating/
Suse URL of this CSAF notice https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1749-1.json
Suse URL for SUSE-SU-2024:1749-1 https://www.suse.com/support/update/announcement/2024/suse-su-20241749-1/
Suse E-Mail link for SUSE-SU-2024:1749-1 https://lists.suse.com/pipermail/sle-updates/2024-May/035334.html
Bugzilla SUSE Bug 1219296 https://bugzilla.suse.com/1219296
Bugzilla SUSE Bug 1220211 https://bugzilla.suse.com/1220211
Bugzilla SUSE Bug 1220828 https://bugzilla.suse.com/1220828
Bugzilla SUSE Bug 1220832 https://bugzilla.suse.com/1220832
Bugzilla SUSE Bug 1221302 https://bugzilla.suse.com/1221302
Bugzilla SUSE Bug 1222685 https://bugzilla.suse.com/1222685
Bugzilla SUSE Bug 1222882 https://bugzilla.suse.com/1222882
Bugzilla SUSE Bug 1223514 https://bugzilla.suse.com/1223514
CVE SUSE CVE CVE-2022-48651 page https://www.suse.com/security/cve/CVE-2022-48651/
CVE SUSE CVE CVE-2023-52340 page https://www.suse.com/security/cve/CVE-2023-52340/
CVE SUSE CVE CVE-2023-52502 page https://www.suse.com/security/cve/CVE-2023-52502/
CVE SUSE CVE CVE-2023-6546 page https://www.suse.com/security/cve/CVE-2023-6546/
CVE SUSE CVE CVE-2024-26585 page https://www.suse.com/security/cve/CVE-2024-26585/
CVE SUSE CVE CVE-2024-26610 page https://www.suse.com/security/cve/CVE-2024-26610/
CVE SUSE CVE CVE-2024-26622 page https://www.suse.com/security/cve/CVE-2024-26622/
CVE SUSE CVE CVE-2024-26766 page https://www.suse.com/security/cve/CVE-2024-26766/
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date