File _patchinfo of Package patchinfo.37018
<patchinfo incident="37018"> <issue id="1225429" tracker="bnc">VUL-0: CVE-2021-47517: kernel live patch: ethtool: do not perform operations on net devices being unregistered</issue> <issue id="1229553" tracker="bnc">VUL-0: CVE-2024-43861: kernel live patch: net: usb: qmi_wwan: fix memory leak for not ip packets</issue> <issue id="1232637" tracker="bnc">VUL-0: CVE-2022-48956: kernel live patch: ipv6: avoid use-after-free in ip6_fragment()</issue> <issue id="1233712" tracker="bnc">VUL-0: CVE-2024-50264: kernel live patch: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans</issue> <issue id="2021-47517" tracker="cve" /> <issue id="2022-48956" tracker="cve" /> <issue id="2024-43861" tracker="cve" /> <issue id="2024-50264" tracker="cve" /> <category>security</category> <rating>important</rating> <packager>nstange</packager> <description>This update for the Linux Kernel 5.14.21-150500_55_73 fixes several issues. The following security issues were fixed: - CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (bsc#1233712). - CVE-2022-48956: ipv6: avoid use-after-free in ip6_fragment() (bsc#1232637). - CVE-2021-47517: Fix panic when interrupt coaleceing is set via ethtool (bsc#1225429). - CVE-2024-43861: Fix memory leak for not ip packets (bsc#1229553). </description> <summary>Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP5)</summary> </patchinfo>
