Security update for the Linux Kernel SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2023:2537-1 Final 1 1 2023-06-19T07:54:38Z current 2023-06-19T07:54:38Z 2023-06-19T07:54:38Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel The SUSE Linux Enterprise 12 SP4 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-3566: Fixed race condition in the TCP Handler (bsc#1204405). - CVE-2022-45886: Fixed a .disconnect versus dvb_device_open race condition in dvb_net.c that lead to a use-after-free (bsc#1205760). - CVE-2022-45885: Fixed a race condition in dvb_frontend.c that could cause a use-after-free when a device is disconnected (bsc#1205758). - CVE-2022-45887: Fixed a memory leak in ttusb_dec.c caused by the lack of a dvb_frontend_detach call (bsc#1205762). - CVE-2022-45919: Fixed a use-after-free in dvb_ca_en50221.c that could occur if there is a disconnect after an open, because of the lack of a wait_event (bsc#1205803). - CVE-2022-45884: Fixed a use-after-free in dvbdev.c, related to dvb_register_device dynamically allocating fops (bsc#1205756). - CVE-2023-31084: Fixed a blocking issue in drivers/media/dvb-core/dvb_frontend.c (bsc#1210783). - CVE-2023-31436: Fixed an out-of-bounds write in qfq_change_class() because lmax can exceed QFQ_MIN_LMAX (bsc#1210940 bsc#1211260). - CVE-2023-2194: Fixed an out-of-bounds write vulnerability in the SLIMpro I2C device driver (bsc#1210715). - CVE-2023-32269: Fixed a use-after-free in af_netrom.c, related to the fact that accept() was also allowed for a successfully connected AF_NETROM socket (bsc#1211186). - CVE-2023-1380: A slab-out-of-bound read problem was fixed in brcmf_get_assoc_ies(), that could lead to a denial of service (bsc#1209287). - CVE-2023-2513: A use-after-free vulnerability was fixed in the ext4 filesystem, related to the way it handled the extra inode size for extended attributes (bsc#1211105). - CVE-2023-2176: A vulnerability was found in compare_netdev_and_ip in drivers/infiniband/core/cma.c in RDMA. The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege (bsc#1210629). The following non-security bugs were fixed: - ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h (bsc#1206878). - ipv6: sr: fix out-of-bounds read when setting HMAC data (bsc#1211592). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2023-2537,SUSE-OpenStack-Cloud-9-2023-2537,SUSE-OpenStack-Cloud-Crowbar-9-2023-2537,SUSE-SLE-HA-12-SP4-2023-2537,SUSE-SLE-Live-Patching-12-SP4-2023-2537,SUSE-SLE-SAP-12-SP4-2023-2537,SUSE-SLE-SERVER-12-SP4-ESPOS-2023-2537,SUSE-SLE-SERVER-12-SP4-LTSS-2023-2537 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ Link for SUSE-SU-2023:2537-1 https://lists.suse.com/pipermail/sle-updates/2023-June/029917.html E-Mail link for SUSE-SU-2023:2537-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1204405 SUSE Bug 1204405 https://bugzilla.suse.com/1205756 SUSE Bug 1205756 https://bugzilla.suse.com/1205758 SUSE Bug 1205758 https://bugzilla.suse.com/1205760 SUSE Bug 1205760 https://bugzilla.suse.com/1205762 SUSE Bug 1205762 https://bugzilla.suse.com/1205803 SUSE Bug 1205803 https://bugzilla.suse.com/1206878 SUSE Bug 1206878 https://bugzilla.suse.com/1209287 SUSE Bug 1209287 https://bugzilla.suse.com/1210629 SUSE Bug 1210629 https://bugzilla.suse.com/1210715 SUSE Bug 1210715 https://bugzilla.suse.com/1210783 SUSE Bug 1210783 https://bugzilla.suse.com/1210940 SUSE Bug 1210940 https://bugzilla.suse.com/1211105 SUSE Bug 1211105 https://bugzilla.suse.com/1211186 SUSE Bug 1211186 https://bugzilla.suse.com/1211260 SUSE Bug 1211260 https://bugzilla.suse.com/1211592 SUSE Bug 1211592 https://www.suse.com/security/cve/CVE-2022-3566/ SUSE CVE CVE-2022-3566 page https://www.suse.com/security/cve/CVE-2022-45884/ SUSE CVE CVE-2022-45884 page https://www.suse.com/security/cve/CVE-2022-45885/ SUSE CVE CVE-2022-45885 page https://www.suse.com/security/cve/CVE-2022-45886/ SUSE CVE CVE-2022-45886 page https://www.suse.com/security/cve/CVE-2022-45887/ SUSE CVE CVE-2022-45887 page https://www.suse.com/security/cve/CVE-2022-45919/ SUSE CVE CVE-2022-45919 page https://www.suse.com/security/cve/CVE-2023-1380/ SUSE CVE CVE-2023-1380 page https://www.suse.com/security/cve/CVE-2023-2176/ SUSE CVE CVE-2023-2176 page https://www.suse.com/security/cve/CVE-2023-2194/ SUSE CVE CVE-2023-2194 page https://www.suse.com/security/cve/CVE-2023-2513/ SUSE CVE CVE-2023-2513 page https://www.suse.com/security/cve/CVE-2023-31084/ SUSE CVE CVE-2023-31084 page https://www.suse.com/security/cve/CVE-2023-31436/ SUSE CVE CVE-2023-31436 page https://www.suse.com/security/cve/CVE-2023-32269/ SUSE CVE CVE-2023-32269 page SUSE Linux Enterprise High Availability Extension 12 SP4 SUSE Linux Enterprise Live Patching 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9 cluster-md-kmp-default-4.12.14-95.128.1 dlm-kmp-default-4.12.14-95.128.1 gfs2-kmp-default-4.12.14-95.128.1 kernel-debug-4.12.14-95.128.1 kernel-debug-base-4.12.14-95.128.1 kernel-debug-devel-4.12.14-95.128.1 kernel-debug-kgraft-devel-4.12.14-95.128.1 kernel-default-4.12.14-95.128.1 kernel-default-base-4.12.14-95.128.1 kernel-default-devel-4.12.14-95.128.1 kernel-default-extra-4.12.14-95.128.1 kernel-default-kgraft-4.12.14-95.128.1 kernel-default-kgraft-devel-4.12.14-95.128.1 kernel-default-man-4.12.14-95.128.1 kernel-devel-4.12.14-95.128.1 kernel-docs-4.12.14-95.128.2 kernel-docs-html-4.12.14-95.128.2 kernel-kvmsmall-4.12.14-95.128.1 kernel-kvmsmall-base-4.12.14-95.128.1 kernel-kvmsmall-devel-4.12.14-95.128.1 kernel-kvmsmall-kgraft-devel-4.12.14-95.128.1 kernel-macros-4.12.14-95.128.1 kernel-obs-build-4.12.14-95.128.1 kernel-obs-qa-4.12.14-95.128.1 kernel-source-4.12.14-95.128.1 kernel-source-vanilla-4.12.14-95.128.1 kernel-syms-4.12.14-95.128.1 kernel-vanilla-4.12.14-95.128.1 kernel-vanilla-base-4.12.14-95.128.1 kernel-vanilla-devel-4.12.14-95.128.1 kernel-vanilla-kgraft-devel-4.12.14-95.128.1 kernel-zfcpdump-4.12.14-95.128.1 kernel-zfcpdump-man-4.12.14-95.128.1 kgraft-patch-4_12_14-95_128-default-1-6.3.1 kselftests-kmp-default-4.12.14-95.128.1 ocfs2-kmp-default-4.12.14-95.128.1 cluster-md-kmp-default-4.12.14-95.128.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP4 dlm-kmp-default-4.12.14-95.128.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP4 gfs2-kmp-default-4.12.14-95.128.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP4 ocfs2-kmp-default-4.12.14-95.128.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP4 kernel-default-kgraft-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Live Patching 12 SP4 kernel-default-kgraft-devel-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Live Patching 12 SP4 kgraft-patch-4_12_14-95_128-default-1-6.3.1 as a component of SUSE Linux Enterprise Live Patching 12 SP4 kernel-default-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-default-base-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-default-devel-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-devel-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-macros-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-source-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-syms-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-default-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default-base-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default-devel-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default-man-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-devel-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-macros-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-source-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-syms-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default-base-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default-devel-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-devel-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-macros-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-source-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-syms-4.12.14-95.128.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud 9 kernel-default-base-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud 9 kernel-default-devel-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud 9 kernel-devel-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud 9 kernel-macros-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud 9 kernel-source-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud 9 kernel-syms-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud 9 kernel-default-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-default-base-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-default-devel-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-devel-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-macros-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-source-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud Crowbar 9 kernel-syms-4.12.14-95.128.1 as a component of SUSE OpenStack Cloud Crowbar 9 A vulnerability, which was classified as problematic, was found in Linux Kernel. This affects the function tcp_getsockopt/tcp_setsockopt of the component TCP Handler. The manipulation leads to race condition. It is recommended to apply a patch to fix this issue. The identifier VDB-211089 was assigned to this vulnerability. CVE-2022-3566 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2022-3566.html CVE-2022-3566 https://bugzilla.suse.com/1204405 SUSE Bug 1204405 An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_register_device dynamically allocating fops. CVE-2022-45884 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2022-45884.html CVE-2022-45884 https://bugzilla.suse.com/1205756 SUSE Bug 1205756 An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_frontend.c has a race condition that can cause a use-after-free when a device is disconnected. CVE-2022-45885 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2022-45885.html CVE-2022-45885 https://bugzilla.suse.com/1205758 SUSE Bug 1205758 An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free. CVE-2022-45886 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2022-45886.html CVE-2022-45886 https://bugzilla.suse.com/1205760 SUSE Bug 1205760 An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusb_dec.c has a memory leak because of the lack of a dvb_frontend_detach call. CVE-2022-45887 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2022-45887.html CVE-2022-45887 https://bugzilla.suse.com/1205762 SUSE Bug 1205762 https://bugzilla.suse.com/1220015 SUSE Bug 1220015 An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is there is a disconnect after an open, because of the lack of a wait_event. CVE-2022-45919 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 important 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2022-45919.html CVE-2022-45919 https://bugzilla.suse.com/1205803 SUSE Bug 1205803 https://bugzilla.suse.com/1208600 SUSE Bug 1208600 https://bugzilla.suse.com/1208912 SUSE Bug 1208912 https://bugzilla.suse.com/1214128 SUSE Bug 1214128 https://bugzilla.suse.com/1215674 SUSE Bug 1215674 A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info->req_len data is bigger than the size of the buffer, defined as WL_EXTRA_BUF_MAX, leading to a denial of service. CVE-2023-1380 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2023-1380.html CVE-2023-1380 https://bugzilla.suse.com/1209287 SUSE Bug 1209287 A vulnerability was found in compare_netdev_and_ip in drivers/infiniband/core/cma.c in RDMA in the Linux Kernel. The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege. CVE-2023-2176 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 important 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2023-2176.html CVE-2023-2176 https://bugzilla.suse.com/1210629 SUSE Bug 1210629 https://bugzilla.suse.com/1210630 SUSE Bug 1210630 https://bugzilla.suse.com/1213842 SUSE Bug 1213842 An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data->block[0]" variable was not capped to a number between 0-255 and was used as the size of a memcpy, possibly writing beyond the end of dma_buffer. This flaw could allow a local privileged user to crash the system or potentially achieve code execution. CVE-2023-2194 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2023-2194.html CVE-2023-2194 https://bugzilla.suse.com/1210715 SUSE Bug 1210715 A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw could allow a privileged local user to cause a system crash or other undefined behaviors. CVE-2023-2513 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 6.6 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2023-2513.html CVE-2023-2513 https://bugzilla.suse.com/1211105 SUSE Bug 1211105 An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interruptible is called; the condition is dvb_frontend_test_event(fepriv,events). In dvb_frontend_test_event, down(&fepriv->sem) is called. However, wait_event_interruptible would put the process to sleep, and down(&fepriv->sem) may block the process. CVE-2023-31084 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2023-31084.html CVE-2023-31084 https://bugzilla.suse.com/1210783 SUSE Bug 1210783 qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX. CVE-2023-31436 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 important 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2023-31436.html CVE-2023-31436 https://bugzilla.suse.com/1210940 SUSE Bug 1210940 https://bugzilla.suse.com/1211260 SUSE Bug 1211260 https://bugzilla.suse.com/1213841 SUSE Bug 1213841 https://bugzilla.suse.com/1213842 SUSE Bug 1213842 https://bugzilla.suse.com/1214128 SUSE Bug 1214128 https://bugzilla.suse.com/1223091 SUSE Bug 1223091 https://bugzilla.suse.com/1224419 SUSE Bug 1224419 An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c, there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However, in order for an attacker to exploit this, the system must have netrom routing configured or the attacker must have the CAP_NET_ADMIN capability. CVE-2023-32269 SUSE Linux Enterprise High Availability Extension 12 SP4:cluster-md-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:dlm-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:gfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise High Availability Extension 12 SP4:ocfs2-kmp-default-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kernel-default-kgraft-devel-4.12.14-95.128.1 SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_128-default-1-6.3.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-default-man-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server 12 SP4-LTSS:kernel-syms-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-base-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-default-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-devel-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-macros-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-source-4.12.14-95.128.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud 9:kernel-syms-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-base-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-default-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-devel-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-macros-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-source-4.12.14-95.128.1 SUSE OpenStack Cloud Crowbar 9:kernel-syms-4.12.14-95.128.1 moderate 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/ https://www.suse.com/security/cve/CVE-2023-32269.html CVE-2023-32269 https://bugzilla.suse.com/1211186 SUSE Bug 1211186