File _patchinfo of Package patchinfo.27972
<patchinfo incident="27972">
<issue id="1206314" tracker="bnc">VUL-0: CVE-2022-3564: kernel live patch: use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c</issue>
<issue id="1207139" tracker="bnc">VUL-0: CVE-2023-0179: kernel live patch: integer overflow vulnerability within the Netfilter (nftables) subsystem</issue>
<issue id="2022-3564" tracker="cve" />
<issue id="2023-0179" tracker="cve" />
<category>security</category>
<rating>important</rating>
<packager>nstange</packager>
<description>This update for the Linux Kernel 5.3.18-150300_59_54 fixes several issues.
The following security issues were fixed:
- CVE-2022-3564: Fixed use-after-free in l2cap_core.c of the Bluetooth component (bsc#1206314).
- CVE-2023-0179: Fixed incorrect arithmetics when fetching VLAN header bits (bsc#1207139).
</description>
<summary>Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP3)</summary>
</patchinfo>