Overview

File _patchinfo of Package patchinfo.37686

<patchinfo incident="37686">
  <issue id="1215420" tracker="bnc">VUL-0: CVE-2023-4244: kernel-source-rt,kernel-source-azure,kernel-source: netfilter: nf_tables UAF</issue>
  <issue id="1224763" tracker="bnc">VUL-0: CVE-2024-35863: kernel: smb: client: fix potential UAF in is_valid_oplock_break()</issue>
  <issue id="1231847" tracker="bnc">L3: performance degradation after kernel update from 5.3.18-150300.59.167 to 5.3.18-150300.59.170  - ref:_00D1igLOd._500TrKqPID:ref</issue>
  <issue id="1233112" tracker="bnc">VUL-0: CVE-2024-50199: kernel: mm/swapfile: skip HugeTLB pages for unuse_vma</issue>
  <issue id="1234025" tracker="bnc">VUL-0: CVE-2024-53104: kernel: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format</issue>
  <issue id="1235217" tracker="bnc">VUL-0: CVE-2024-56600: kernel: net: inet6: do not leave a dangling sk pointer in inet6_create()</issue>
  <issue id="1235230" tracker="bnc">VUL-0: CVE-2024-56601: kernel: net: inet: do not leave a dangling sk pointer in inet_create()</issue>
  <issue id="1235249" tracker="bnc">VUL-0: CVE-2024-56664: kernel: bpf, sockmap: fix race between element replace and close()</issue>
  <issue id="1235430" tracker="bnc">VUL-0: CVE-2024-56650: kernel: netfilter: x_tables: fix LED ID check in led_tg_check()</issue>
  <issue id="1235441" tracker="bnc">VUL-0: CVE-2024-56658: kernel: net: defer final 'struct net' free in netns dismantle</issue>
  <issue id="1235466" tracker="bnc">VUL-0: CVE-2024-56623: kernel: scsi: qla2xxx: Fix use after free on unload</issue>
  <issue id="1235645" tracker="bnc">VUL-0: CVE-2024-56759: kernel: btrfs: fix use-after-free when COWing tree bock and tracing is enabled</issue>
  <issue id="1235759" tracker="bnc">VUL-0: CVE-2024-57791: kernel: net/smc: check return value of sock_recvmsg when draining clc data</issue>
  <issue id="1235814" tracker="bnc">VUL-0: CVE-2024-57849: kernel: s390/cpum_sf: handle CPU hotplug remove during sampling</issue>
  <issue id="1235818" tracker="bnc">VUL-0: CVE-2024-57798: kernel: drm/dp_mst: ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()</issue>
  <issue id="1235920" tracker="bnc">VUL-0: CVE-2024-57893: kernel: ALSA: seq: oss: fix races at processing SysEx messages</issue>
  <issue id="1236104" tracker="bnc">VUL-0: CVE-2023-52923: kernel: netfilter: nf_tables: adapt set backend to use GC transaction API</issue>
  <issue id="1231847" tracker="bnc">L3: performance degradation after kernel update from 5.3.18-150300.59.167 to 5.3.18-150300.59.170  - ref:_00D1igLOd._500TrKqPID:ref</issue>
  <issue id="1237389" tracker="bnc">L3: BUG: soft lockup - CPU#16 stuck for 26s! ...  nfs_readdir spotted in stack  -  ref:_00D1igLOd._500TrTsdIP:ref</issue>
  <issue id="2023-4244" tracker="cve" />
  <issue id="2023-52923" tracker="cve" />
  <issue id="2024-35863" tracker="cve" />
  <issue id="2024-50199" tracker="cve" />
  <issue id="2024-53104" tracker="cve" />
  <issue id="2024-56600" tracker="cve" />
  <issue id="2024-56601" tracker="cve" />
  <issue id="2024-56623" tracker="cve" />
  <issue id="2024-56650" tracker="cve" />
  <issue id="2024-56658" tracker="cve" />
  <issue id="2024-56664" tracker="cve" />
  <issue id="2024-56759" tracker="cve" />
  <issue id="2024-57791" tracker="cve" />
  <issue id="2024-57798" tracker="cve" />
  <issue id="2024-57849" tracker="cve" />
  <issue id="2024-57893" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>alix82</packager>
  <reboot_needed/>
  <description>The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

- CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1224763).
- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).
- CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025).
- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).
- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).
- CVE-2024-56623: scsi: qla2xxx: Fix use after free on unload (bsc#1235466).
- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).
- CVE-2024-56658: net: defer final 'struct net' free in netns dismantle (bsc#1235441).
- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).
- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).
- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).
- CVE-2024-57798: drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() (bsc#1235818).
- CVE-2024-57849: s390/cpum_sf: Handle CPU hotplug remove during sampling (bsc#1235814).
- CVE-2024-57893: ALSA: seq: oss: Fix races at processing SysEx messages (bsc#1235920).

The following non-security bugs were fixed:

- NFS: Adjust the amount of readahead performed by NFS readdir (bsc#1231847).
- NFS: Do not flush the readdir cache in nfs_dentry_iput() (bsc#1231847).
- NFS: Improve heuristic for readdirplus (bsc#1231847, bsc#1231847, bsc#1237389).
- NFS: Reduce readdir stack usage (bsc#1231847).
- NFS: Trigger the "ls -l" readdir heuristic sooner (bsc#1231847).
- NFS: Use kmemdup_nul() in nfs_readdir_make_qstr() (bsc#1231847).
</description>
        <summary>Security update for the Linux Kernel</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places