Overview

File _patchinfo of Package patchinfo.36341

<patchinfo incident="36341">
  <issue id="1195775" tracker="bnc">apparmor fails to build with 5.16.7</issue>
  <issue id="1204171" tracker="bnc">VUL-0: CVE-2022-3435: kernel: out-of-bounds read in fib_nh_match() of the file net/ipv4/fib_semantics.c</issue>
  <issue id="1205796" tracker="bnc">VUL-0: CVE-2022-45934: kernel: integer wraparound via L2CAP_CONF_REQ packets affects l2cap_config_req in net/bluetooth/l2cap_core.c</issue>
  <issue id="1206344" tracker="bnc">memcg: Fix possible use-after-free in memcg_write_event_control()</issue>
  <issue id="1209290" tracker="bnc">VUL-0: CVE-2023-28327: kernel: denial of service problem in net/unix/diag.c</issue>
  <issue id="1218562" tracker="bnc">VUL-0: CVE-2023-6270: kernel: use-after-free vulnerability in ATA over Ethernet (AoE) driver</issue>
  <issue id="1219125" tracker="bnc">VUL-0: CVE-2023-46343: kernel: NULL pointer dereference in send_acknowledge in net/nfc/nci/spi.c</issue>
  <issue id="1223384" tracker="bnc">VUL-0: CVE-2024-26923: kernel: af_unix: fix garbage collector racing against connect()</issue>
  <issue id="1223524" tracker="bnc">VUL-0: CVE-2022-48664: kernel: btrfs: hang during unmount when stopping a space reclaim worker</issue>
  <issue id="1223824" tracker="bnc">VUL-0: CVE-2024-27043: kernel: media: media: dvbdev: use-after-free in different places</issue>
  <issue id="1225336" tracker="bnc">VUL-0: CVE-2021-47416: kernel: phy: mdio: fix memory leak</issue>
  <issue id="1225611" tracker="bnc">VUL-0: CVE-2023-52881: kernel: tcp: do not accept ACK of bytes we never sent</issue>
  <issue id="1226211" tracker="bnc">kernel-obs-build missing network modules for Docker build</issue>
  <issue id="1226212" tracker="bnc">kernel-obs-build doesn't find "iso9660" when building containers with podman</issue>
  <issue id="1226557" tracker="bnc">VUL-0: CVE-2021-47589: kernel: igbvf: fix double free in `igbvf_probe`</issue>
  <issue id="1228743" tracker="bnc">VUL-0: CVE-2024-42145: kernel: IB/core: implement a limit on UMAD receive List</issue>
  <issue id="1229042" tracker="bnc">Enable kernel-default-livepatch-devel for TW since it's already enabled on Leap</issue>
  <issue id="1229454" tracker="bnc">fuse: Initialize beyond-EOF page contents before setting uptodate</issue>
  <issue id="1229456" tracker="bnc">CVE-2024-44947: kernel: fuse: Initialize beyond-EOF page contents before setting uptodate</issue>
  <issue id="1230429" tracker="bnc">VUL-0: CVE-2024-45016: kernel: netem: fix return value if duplicate enqueue fails</issue>
  <issue id="1231073" tracker="bnc">VUL-0: CVE-2024-46849: kernel: ASoC: meson: axg-card: fix 'use-after-free'</issue>
  <issue id="1231191" tracker="bnc">VUL-0: CVE-2024-46813: kernel: drm/amd/display: check link_index before accessing dc-&gt;links[]</issue>
  <issue id="1231197" tracker="bnc">VUL-0: CVE-2024-46816: kernel: drm/amd/display: stop amdgpu_dm initialize when link nums greater than max_links</issue>
  <issue id="1231200" tracker="bnc">VUL-0: CVE-2024-46817: kernel: drm/amd/display: stop amdgpu_dm initialize when stream nums greater than 6</issue>
  <issue id="1231203" tracker="bnc">VUL-0: CVE-2024-46818: kernel: drm/amd/display: check gpio_id before used as array index</issue>
  <issue id="1231293" tracker="bnc">kernel shown as unreleased</issue>
  <issue id="1231375" tracker="bnc">Fix pointer-leak due to insufficient speculative store bypass mitigation in BPF verifier</issue>
  <issue id="1231502" tracker="bnc">VUL-0: CVE-2024-47668: kernel: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()</issue>
  <issue id="1231673" tracker="bnc">VUL-0: CVE-2024-47674: kernel: mm: avoid leaving partial pfn mappings around in error case</issue>
  <issue id="1231861" tracker="bnc">VUL-0: CVE-2024-49860: kernel: ACPI: sysfs: validate return type of _STR method</issue>
  <issue id="1231887" tracker="bnc">VUL-0: CVE-2022-48970: kernel: af_unix: Get user_ns from in_skb in unix_diag_get_exact().</issue>
  <issue id="1231890" tracker="bnc">VUL-0: CVE-2022-49014: kernel: net: tun: Fix use-after-free in tun_detach()</issue>
  <issue id="1231893" tracker="bnc">VUL-0: CVE-2022-48956: kernel: ipv6: avoid use-after-free in ip6_fragment()</issue>
  <issue id="1231895" tracker="bnc">VUL-0: CVE-2022-48947: kernel: Bluetooth: L2CAP: Fix u8 overflow</issue>
  <issue id="1231936" tracker="bnc">VUL-0: CVE-2022-48999: kernel: ipv4: Handle attempt to delete multipath route when fib_info contains an nh reference</issue>
  <issue id="1231938" tracker="bnc">VUL-0: CVE-2022-49015: kernel: net: hsr: Fix potential use-after-free</issue>
  <issue id="1231942" tracker="bnc">VUL-0: CVE-2024-47706: kernel: block, bfq: fix possible UAF for bfqq-&gt;bic with merge chain</issue>
  <issue id="1231960" tracker="bnc">VUL-0: CVE-2022-49025: kernel: net/mlx5e: Fix use-after-free when reverting termination table</issue>
  <issue id="1231961" tracker="bnc">VUL-0: CVE-2022-49023: kernel: wifi: cfg80211: fix buffer overflow in elem comparison</issue>
  <issue id="1231979" tracker="bnc">VUL-0: CVE-2022-48960: kernel: net: hisilicon: Fix potential use-after-free in hix5hd2_rx()</issue>
  <issue id="1231987" tracker="bnc">VUL-0: CVE-2024-47684: kernel: tcp: check skb is non-NULL in tcp_rto_delta_us()</issue>
  <issue id="1231988" tracker="bnc">VUL-0: CVE-2023-52919: kernel: nfc: nci: fix possible NULL pointer dereference in send_acknowledge()</issue>
  <issue id="1232033" tracker="bnc">net: mana: Fix the extra HZ in mana_hwc_send_request</issue>
  <issue id="1232069" tracker="bnc">VUL-0: CVE-2022-48988: kernel: memcg: fix possible use-after-free in memcg_write_event_control()</issue>
  <issue id="1232070" tracker="bnc">VUL-0: CVE-2022-48991: kernel: mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths</issue>
  <issue id="1232097" tracker="bnc">VUL-0: CVE-2024-49982: kernel: aoe: fix the potential use-after-free problem in more places</issue>
  <issue id="1232136" tracker="bnc">VUL-0: CVE-2022-49003: kernel: nvme: fix SRCU protection of nvme_ns_head list</issue>
  <issue id="1232145" tracker="bnc">VUL-0: CVE-2024-47747: kernel: net: seeq: fix use after free vulnerability in ether3 Driver Due to Race Condition</issue>
  <issue id="1232262" tracker="bnc">VUL-0: CVE-2024-49867: kernel: btrfs: wait for fixup workers before stopping cleaner kthread during umount</issue>
  <issue id="1232282" tracker="bnc">VUL-0: CVE-2024-49991: kernel: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer</issue>
  <issue id="1232286" tracker="bnc">VUL-0: CVE-2022-48962: kernel: net: hisilicon: Fix potential use-after-free in hisi_femac_rx()</issue>
  <issue id="1232304" tracker="bnc">VUL-0: CVE-2022-48967: kernel: NFC: nci: Bounds check struct nfc_target arrays</issue>
  <issue id="1232383" tracker="bnc">VUL-0: CVE-2024-49974: kernel: NFSD: limit the number of concurrent async COPY operations</issue>
  <issue id="1232418" tracker="bnc">VUL-0: CVE-2024-50047: kernel: smb: client: fix UAF in async decryption</issue>
  <issue id="1232424" tracker="bnc">VUL-0: CVE-2024-49936: kernel: net/xen-netback: prevent UAF in xenvif_flush_hash()</issue>
  <issue id="1232432" tracker="bnc">VUL-0: CVE-2024-49995: kernel: tipc: guard against string buffer overrun</issue>
  <issue id="2021-47416" tracker="cve" />
  <issue id="2021-47589" tracker="cve" />
  <issue id="2022-3435" tracker="cve" />
  <issue id="2022-45934" tracker="cve" />
  <issue id="2022-48664" tracker="cve" />
  <issue id="2022-48947" tracker="cve" />
  <issue id="2022-48956" tracker="cve" />
  <issue id="2022-48960" tracker="cve" />
  <issue id="2022-48962" tracker="cve" />
  <issue id="2022-48967" tracker="cve" />
  <issue id="2022-48970" tracker="cve" />
  <issue id="2022-48988" tracker="cve" />
  <issue id="2022-48991" tracker="cve" />
  <issue id="2022-48999" tracker="cve" />
  <issue id="2022-49003" tracker="cve" />
  <issue id="2022-49014" tracker="cve" />
  <issue id="2022-49015" tracker="cve" />
  <issue id="2022-49023" tracker="cve" />
  <issue id="2022-49025" tracker="cve" />
  <issue id="2023-28327" tracker="cve" />
  <issue id="2023-46343" tracker="cve" />
  <issue id="2023-52881" tracker="cve" />
  <issue id="2023-52919" tracker="cve" />
  <issue id="2023-6270" tracker="cve" />
  <issue id="2024-27043" tracker="cve" />
  <issue id="2024-42145" tracker="cve" />
  <issue id="2024-44947" tracker="cve" />
  <issue id="2024-45016" tracker="cve" />
  <issue id="2024-46813" tracker="cve" />
  <issue id="2024-46816" tracker="cve" />
  <issue id="2024-46817" tracker="cve" />
  <issue id="2024-46818" tracker="cve" />
  <issue id="2024-46849" tracker="cve" />
  <issue id="2024-47668" tracker="cve" />
  <issue id="2024-47674" tracker="cve" />
  <issue id="2024-47684" tracker="cve" />
  <issue id="2024-47706" tracker="cve" />
  <issue id="2024-47747" tracker="cve" />
  <issue id="2024-49860" tracker="cve" />
  <issue id="2024-49867" tracker="cve" />
  <issue id="2024-49936" tracker="cve" />
  <issue id="2024-49974" tracker="cve" />
  <issue id="2024-49982" tracker="cve" />
  <issue id="2024-49991" tracker="cve" />
  <issue id="2024-49995" tracker="cve" />
  <issue id="2024-50047" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>jdelvare</packager>
  <reboot_needed/>
  <description>
The SUSE Linux Enterprise 15 SP2 LTSS kernel was updated to receive various security bugfixes.


The following security bugs were fixed:

- CVE-2021-47589: igbvf: fix double free in `igbvf_probe` (bsc#1226557).
- CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1231893).
- CVE-2022-48960: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() (bsc#1231979).
- CVE-2022-48962: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (bsc#1232286).
- CVE-2022-48967: NFC: nci: Bounds check struct nfc_target arrays (bsc#1232304).
- CVE-2022-48988: memcg: Fix possible use-after-free in memcg_write_event_control() (bsc#1206344 bsc#1232069).
- CVE-2022-48991: khugepaged: retract_page_tables() remember to test exit (bsc#1232070).
- CVE-2022-49003: nvme: fix SRCU protection of nvme_ns_head list (bsc#1232136).
- CVE-2022-49014: net: tun: Fix use-after-free in tun_detach() (bsc#1231890).
- CVE-2022-49015: net: hsr: Fix potential use-after-free (bsc#1231938).
- CVE-2022-49023: wifi: cfg80211: fix buffer overflow in elem comparison (bsc#1231961).
- CVE-2022-49025: net/mlx5e: Fix use-after-free when reverting termination table (bsc#1231960).
- CVE-2024-45016: netem: fix return value if duplicate enqueue fails (bsc#1230429).
- CVE-2024-46813: drm/amd/display: Check link_index before accessing dc->links (bsc#1231191).
- CVE-2024-46816: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links (bsc#1231197).
- CVE-2024-46817: drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (bsc#1231200).
- CVE-2024-46818: drm/amd/display: Check gpio_id before used as array index (bsc#1231203).
- CVE-2024-46849: ASoC: meson: axg-card: fix 'use-after-free' (bsc#1231073).
- CVE-2024-47668: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (bsc#1231502).
- CVE-2024-47674: mm: avoid leaving partial pfn mappings around in error case (bsc#1231673).
- CVE-2024-47684: tcp: check skb is non-NULL in tcp_rto_delta_us() (bsc#1231987).
- CVE-2024-47706: block, bfq: fix possible UAF for bfqq->bic with merge chain (bsc#1231942).
- CVE-2024-47747: net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race Condition (bsc#1232145).
- CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231861).
- CVE-2024-49936: net/xen-netback: prevent UAF in xenvif_flush_hash() (bsc#1232424).
- CVE-2024-49974: NFSD: Force all NFSv4.2 COPY requests to be synchronous (bsc#1232383).
- CVE-2024-49991: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (bsc#1232282).
- CVE-2024-49995: tipc: guard against string buffer overrun (bsc#1232432).
- CVE-2024-50047: smb: client: fix UAF in async decryption (bsc#1232418).

The following non-security bugs were fixed:

- initrd: Revert "build initrd without systemd" (bsc#1195775).
- bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation (bsc#1231375).
- kernel-binary.spec.in: Enable klp_symbols on openSUSE Tumbleweed (boo#1229042).
- kernel-binary: generate and install compile_commands.json (bsc#1228971).
- net: mana: Fix the extra HZ in mana_hwc_send_request (bsc#1232033).
- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc
- rpm/check-for-config-changes: add HAVE_RUST and RUSTC_SUPPORTS_ to IGNORED_CONFIGS_RE They depend on SHADOW_CALL_STACK.
- rpm/kernel-binary.spec.in: Fix build regression The previous fix forgot to take over grep -c option that broke the conditional expression.
- rpm/kernel-binary.spec.in: fix klp_symbols macro The commit below removed openSUSE filter from %ifs of the klp_symbols definition (boo#1229042).
- rpm/kernel-obs-build.spec.in: Some builds do not just create an iso9660 image, but also mount it during build (bsc#1226212).
- rpm/kernel-obs-build.spec.in: Add networking modules for docker (bsc#1226211).
- rpm/release-projects: Add SLFO projects (bsc#1231293).
</description>
	<summary>Security update for the Linux Kernel</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places