File _patchinfo of Package patchinfo.33913
<patchinfo incident="33913"> <issue id="1210619" tracker="bnc">VUL-0: CVE-2023-1829: kernel live patch: Linux kernel: Vulnerabilities in the tcindex classifier</issue> <issue id="1218487" tracker="bnc">VUL-0: CVE-2023-6531: kernel live patch: GC's deletion of an SKB races with unix_stream_read_generic() leading to UAF</issue> <issue id="1222685" tracker="bnc">VUL-0: CVE-2023-6546: kernel live patch: GSM multiplexing race condition leads to privilege escalation</issue> <issue id="1223514" tracker="bnc">VUL-0: CVE-2022-48651: kernel live patch: ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header</issue> <issue id="2022-48651" tracker="cve" /> <issue id="2023-1829" tracker="cve" /> <issue id="2023-6531" tracker="cve" /> <issue id="2023-6546" tracker="cve" /> <category>security</category> <rating>important</rating> <packager>nstange</packager> <description>This update for the Linux Kernel 5.3.18-150200_24_183 fixes several issues. The following security issues were fixed: - CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514). - CVE-2023-6546: Fixed a race condition that could lead to a use-after-free in the GSM 0710 tty multiplexor (bsc#1222685). - CVE-2023-6531: Fixed a use-after-free due to a race with the deletion of a SKB in unix_stream_read_generic() (bsc#1218487). - CVE-2023-1829: Fixed a use-after-free in tcindex that can lead local privilege escalation (bsc#1210619). </description> <summary>Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP2)</summary> </patchinfo>
