SUSE-SU-2024:0129-1

Source
https://www.suse.com/support/update/announcement/2024/suse-su-20240129-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2024:0129-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2024:0129-1
Related
Published
2024-01-16T14:49:00Z
Modified
2024-01-16T14:49:00Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

  • CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix garbage collector's deletion of SKB races with unixstreamread_generic() on the socket that the SKB is queued on (bsc#1218447).
  • CVE-2023-6610: Fixed an out of bounds read in the SMB client when printing debug information (bsc#1217946).
  • CVE-2023-51779: Fixed a use-after-free because of a btsockioctl race condition in btsockrecvmsg (bsc#1218559).
  • CVE-2020-26555: Fixed an issue during BR/EDR PIN code pairing in the Bluetooth subsystem that would allow replay attacks (bsc#1179610 bsc#1215237).
  • CVE-2023-6606: Fixed an out of bounds read in the SMB client when receiving a malformed length from a server (bsc#1217947).
  • CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1218335).
  • CVE-2023-6931: Fixed a heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component that could lead to local privilege escalation. (bsc#1218258).
  • CVE-2023-6932: Fixed a use-after-free vulnerability in the Linux kernel's ipv4: igmp component that could lead to local privilege escalation (bsc#1218253).
  • CVE-2023-6622: Fixed a null pointer dereference vulnerability in nftdynsetinit() that could allow a local attacker with CAPNETADMIN user privilege to trigger a denial of service (bsc#1217938).
  • CVE-2023-6121: Fixed an information leak via dmesg when receiving a crafted packet in the NVMe-oF/TCP subsystem (bsc#1217250).

The following non-security bugs were fixed:

  • Reviewed and added more information to README.SUSE (jsc#PED-5021).
  • Build in the correct KOTD repository with multibuild (JSC-SLE#5501, boo#1211226, bsc#1218184) With multibuild setting repository flags is no longer supported for individual spec files - see https://github.com/openSUSE/open-build-service/issues/3574 Add ExclusiveArch conditional that depends on a macro set up by bs-upload-kernel instead. With that each package should build only in one repository - either standard or QA. Note: bs-upload-kernel does not interpret rpm conditionals, and only uses the first ExclusiveArch line to determine the architectures to enable.
  • KVM: s390/mm: Properly reset no-dat (bsc#1218056).
  • KVM: s390: vsie: fix wrong VIR 37 when MSO is used (bsc#1217933).
  • KVM: x86: Mask LVTPC when handling a PMI (jsc#PED-7322).
  • NFS: Fix O_DIRECT locking issues (bsc#1211162).
  • NFS: Fix a few more clear_bit() instances that need release semantics (bsc#1211162).
  • NFS: Fix a potential data corruption (bsc#1211162).
  • NFS: Fix a use after free in nfsdirectjoin_group() (bsc#1211162).
  • NFS: Fix error handling for O_DIRECT write scheduling (bsc#1211162).
  • NFS: More O_DIRECT accounting fixes for error paths (bsc#1211162).
  • NFS: More fixes for nfsdirectwriterescheduleio() (bsc#1211162).
  • NFS: Use the correct commit info in nfsjoinpage_group() (bsc#1211162).
  • NLM: Defend against filelock changes after vfstest_lock() (bsc#1217692).
  • Updated SPI patches for NVIDIA Grace enablement (bsc#1212584, jsc#PED-3459).
  • block: fix revalidate performance regression (bsc#1216057).
  • bpf: Adjust insufficient default bpfjitlimit (bsc#1218234).
  • ceph: fix incorrect revoked caps assert in cephfillfile_size() (bsc#1217980).
  • ceph: fix type promotion bug on 32bit systems (bsc#1217982).
  • clocksource: Add a Kconfig option for WATCHDOGMAXSKEW (bsc#1215885 bsc#1217217).
  • clocksource: Enable TSC watchdog checking of HPET and PMTMR only when requested (bsc#1215885 bsc#1217217).
  • clocksource: Handle negative skews in 'skew is too large' messages (bsc#1215885 bsc#1217217).
  • clocksource: Improve 'skew is too large' messages (bsc#1215885 bsc#1217217).
  • clocksource: Improve read-back-delay message (bsc#1215885 bsc#1217217).
  • clocksource: Loosen clocksource watchdog constraints (bsc#1215885 bsc#1217217).
  • clocksource: Print clocksource name when clocksource is tested unstable (bsc#1215885 bsc#1217217).
  • clocksource: Verify HPET and PMTMR when TSC unverified (bsc#1215885 bsc#1217217).
  • dmblkioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).
  • fuse: dax: set fc->dax to NULL in fusedaxconn_free() (bsc#1218659).
  • kabi/severities: ignore kABI for asus-wmi drivers Tolerate the kABI changes, as used only locally for asus-wmi stuff
  • libceph: use kernel_connect() (bsc#1217981).
  • mkspec: Add multibuild support (JSC-SLE#5501, boo#1211226, bsc#1218184) When MULTIBUILD option in config.sh is enabled generate a _multibuild file listing all spec files.
  • mm: kmem: drop _GFPNOFAIL when allocating objcg vectors (bsc#1218515).
  • net/smc: Fix pos miscalculation in statistics (bsc#1218139).
  • net/tg3: fix race condition in tg3resettask() (bsc#1217801).
  • nfs: only issue commit in DIO codepath if we have uncommitted data (bsc#1211162).
  • remove unnecessary WARNONONCE() (bsc#1214823 bsc#1218569).
  • s390/vx: fix save/restore of fpu kernel context (bsc#1218357).
  • scsi: lpfc: use unsigned type for num_sge (bsc#1214747).
  • swiotlb: fix a braino in the alignment check fix (bsc#1216559).
  • swiotlb: fix slot alignment checks (bsc#1216559).
  • tracing: Disable preemption when using the filter buffer (bsc#1217036).
  • tracing: Fix a possible race when disabling buffered events (bsc#1217036).
  • tracing: Fix a warning when allocating buffered events fails (bsc#1217036).
  • tracing: Fix incomplete locking when disabling buffered events (bsc#1217036).
  • tracing: Fix warning in tracebufferedevent_disable() (bsc#1217036).
  • tracing: Use _thiscpuread() in traceeventbufferlock_reserver() (bsc#1217036).
  • uapi: propagate _structgroup() attributes to the container union (jsc#SLE-18978).
  • vsprintf/kallsyms: Prevent invalid data when printing symbol (bsc#1217602).
  • x86/entry/ia32: Ensure s32 is sign extended to s64 (bsc#1193285).
  • x86/platform/uv: Use alternate source for socket to node data (bsc#1215696 bsc#1217790).
  • x86/tsc: Add option to force frequency recalibration with HW timer (bsc#1215885 bsc#1217217).
  • x86/tsc: Be consistent about usetscdelay() (bsc#1215885 bsc#1217217).
  • x86/tsc: Extend watchdog check exemption to 4-Sockets platform (bsc#1215885 bsc#1217217).
References

Affected packages

SUSE:Linux Enterprise Micro 5.3 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.65.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt": "5.14.21-150400.15.65.1"
        }
    ]
}

SUSE:Linux Enterprise Micro 5.4 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.65.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt": "5.14.21-150400.15.65.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 15 SP4 / kernel-livepatch-SLE15-SP4-RT_Update_17

Package

Name
kernel-livepatch-SLE15-SP4-RT_Update_17
Purl
purl:rpm/suse/kernel-livepatch-SLE15-SP4-RT_Update_17&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1-150400.1.3.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-livepatch-5_14_21-150400_15_65-rt": "1-150400.1.3.1"
        }
    ]
}

SUSE:Real Time Module 15 SP4 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.65.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.65.1",
            "dlm-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-rt_debug": "5.14.21-150400.15.65.1",
            "kernel-rt-devel": "5.14.21-150400.15.65.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.65.1",
            "kernel-source-rt": "5.14.21-150400.15.65.1",
            "kernel-rt": "5.14.21-150400.15.65.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.65.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-syms-rt": "5.14.21-150400.15.65.1"
        }
    ]
}

SUSE:Real Time Module 15 SP4 / kernel-rt_debug

Package

Name
kernel-rt_debug
Purl
purl:rpm/suse/kernel-rt_debug&distro=SUSE%20Real%20Time%20Module%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.65.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.65.1",
            "dlm-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-rt_debug": "5.14.21-150400.15.65.1",
            "kernel-rt-devel": "5.14.21-150400.15.65.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.65.1",
            "kernel-source-rt": "5.14.21-150400.15.65.1",
            "kernel-rt": "5.14.21-150400.15.65.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.65.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-syms-rt": "5.14.21-150400.15.65.1"
        }
    ]
}

SUSE:Real Time Module 15 SP4 / kernel-source-rt

Package

Name
kernel-source-rt
Purl
purl:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.65.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.65.1",
            "dlm-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-rt_debug": "5.14.21-150400.15.65.1",
            "kernel-rt-devel": "5.14.21-150400.15.65.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.65.1",
            "kernel-source-rt": "5.14.21-150400.15.65.1",
            "kernel-rt": "5.14.21-150400.15.65.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.65.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-syms-rt": "5.14.21-150400.15.65.1"
        }
    ]
}

SUSE:Real Time Module 15 SP4 / kernel-syms-rt

Package

Name
kernel-syms-rt
Purl
purl:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.65.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-devel-rt": "5.14.21-150400.15.65.1",
            "dlm-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-rt_debug": "5.14.21-150400.15.65.1",
            "kernel-rt-devel": "5.14.21-150400.15.65.1",
            "cluster-md-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-rt_debug-devel": "5.14.21-150400.15.65.1",
            "kernel-source-rt": "5.14.21-150400.15.65.1",
            "kernel-rt": "5.14.21-150400.15.65.1",
            "ocfs2-kmp-rt": "5.14.21-150400.15.65.1",
            "gfs2-kmp-rt": "5.14.21-150400.15.65.1",
            "kernel-syms-rt": "5.14.21-150400.15.65.1"
        }
    ]
}

openSUSE:Leap Micro 5.3 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=openSUSE%20Leap%20Micro%205.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.65.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt": "5.14.21-150400.15.65.1"
        }
    ]
}

openSUSE:Leap Micro 5.4 / kernel-rt

Package

Name
kernel-rt
Purl
purl:rpm/suse/kernel-rt&distro=openSUSE%20Leap%20Micro%205.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.15.65.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-rt": "5.14.21-150400.15.65.1"
        }
    ]
}