SUSE-SU-2023:0770-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2023/suse-su-20230770-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:0770-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2023:0770-1
Related
Published
2023-03-16T12:28:08Z
Modified
2025-05-02T04:33:30.228123Z
Upstream
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2022-38096: Fixed NULL-ptr deref in vmwcmddxdefinequery() (bsc#1203331).
  • CVE-2022-4129: Fixed a denial of service with the Layer 2 Tunneling Protocol (L2TP). A missing lock when clearing skuserdata can lead to a race condition and NULL pointer dereference. (bsc#1205711)
  • CVE-2023-0597: Fixed lack of randomization of per-cpu entry area in x86/mm (bsc#1207845).
  • CVE-2023-1118: Fixed a use-after-free bugs caused by enetxirqsim() in media/rc (bsc#1208837).
  • CVE-2023-23559: Fixed integer overflow in rndis_wlan that leads to a buffer overflow (bsc#1207051).
  • CVE-2023-26545: Fixed double free in net/mpls/af_mpls.c upon an allocation failure (bsc#1208700).

The following non-security bugs were fixed:

  • bonding: fix 802.3ad state sent to partner when unbinding slave (git-fixes).
  • icmp: do not fail on fragment reassembly time exceeded (git-fixes).
  • ipmi: fix initialization when workqueue allocation fails (git-fixes).
  • ipmi: msghandler: Make symbol 'removeworkwq' static (git-fixes).
  • kabi fix for - SUNRPC: Fix priority queue fairness (git-fixes).
  • kabi fix for: NFS: Pass error information to the pgio error cleanup routine (git-fixes).
  • kabi/severities: add l2tp local symbols
  • net: aquantia: fix RSS table and key sizes (git-fixes).
  • netfilter: ipvs: Fix inappropriate output of procfs (git-fixes).
  • netfilter: xt_connlimit: do not store address in the conn nodes (git-fixes).
  • nfs: Fix nfsi->nrequests count error on nfsinoderemove_request (git-fixes).
  • nfs: Pass error information to the pgio error cleanup routine (git-fixes).
  • nfsd: fix handling of readdir in v4root vs. mount upcall timeout (git-fixes).
  • nfsd: fix race to check ls_layouts (git-fixes).
  • nfsd: under NFSv4.1, fix double svcxprtput on rpc_create failure (git-fixes).
  • ocfs2: Fix data corruption after failed write (bsc#1208542).
  • pNFS/filelayout: Fix coalescing test for single DS (git-fixes).
  • powerpc/eeh: Fix use-after-release of EEH driver (bsc#1065729).
  • powerpc/fscr: Enable interrupts earlier before calling get_user() (bsc#1065729).
  • powerpc/powernv: Fix build error in opal-imc.c when NUMA=n (bsc#1065729).
  • powerpc/powernv: IMC fix out of bounds memory access at shutdown (bsc#1065729).
  • scsi: qla2xxx: Add option to disable FC2 Target support (bsc#1198438 bsc#1206103).
  • sunrpc: Fix priority queue fairness (git-fixes).
  • sunrpc: ensure the matching upcall is in-flight upon downcall (git-fixes).
  • vlan: Fix out of order vlan headers with reorder header off (git-fixes).
  • vlan: Fix vlan insertion for packets without ethernet header (git-fixes).
  • vxlan: Fix error path in _vxlandev_create() (git-fixes).
  • vxlan: changelink: Fix handling of default remotes (git-fixes).
  • xfrm: Copy policy family in clone_policy (git-fixes).
References

Affected packages

SUSE:Linux Enterprise High Availability Extension 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "dlm-kmp-default": "4.12.14-122.153.1",
            "gfs2-kmp-default": "4.12.14-122.153.1",
            "ocfs2-kmp-default": "4.12.14-122.153.1",
            "cluster-md-kmp-default": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kgraft-patch-4_12_14-122_153-default": "1-8.3.1",
            "kernel-default-kgraft": "4.12.14-122.153.1",
            "kernel-default-kgraft-devel": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 12 SP5 / kgraft-patch-SLE12-SP5_Update_41

Package

Name
kgraft-patch-SLE12-SP5_Update_41
Purl
pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_41&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1-8.3.1

Ecosystem specific 

{
    "binaries": [
        {
            "kgraft-patch-4_12_14-122_153-default": "1-8.3.1",
            "kernel-default-kgraft": "4.12.14-122.153.1",
            "kernel-default-kgraft-devel": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP5 / kernel-docs

Package

Name
kernel-docs
Purl
pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-docs": "4.12.14-122.153.1",
            "kernel-obs-build": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 12 SP5 / kernel-obs-build

Package

Name
kernel-obs-build
Purl
pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-docs": "4.12.14-122.153.1",
            "kernel-obs-build": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.153.1",
            "kernel-devel": "4.12.14-122.153.1",
            "kernel-default-base": "4.12.14-122.153.1",
            "kernel-default-man": "4.12.14-122.153.1",
            "kernel-default": "4.12.14-122.153.1",
            "kernel-source": "4.12.14-122.153.1",
            "kernel-syms": "4.12.14-122.153.1",
            "kernel-default-devel": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-source

Package

Name
kernel-source
Purl
pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.153.1",
            "kernel-devel": "4.12.14-122.153.1",
            "kernel-default-base": "4.12.14-122.153.1",
            "kernel-default-man": "4.12.14-122.153.1",
            "kernel-default": "4.12.14-122.153.1",
            "kernel-source": "4.12.14-122.153.1",
            "kernel-syms": "4.12.14-122.153.1",
            "kernel-default-devel": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Server 12 SP5 / kernel-syms

Package

Name
kernel-syms
Purl
pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.153.1",
            "kernel-devel": "4.12.14-122.153.1",
            "kernel-default-base": "4.12.14-122.153.1",
            "kernel-default-man": "4.12.14-122.153.1",
            "kernel-default": "4.12.14-122.153.1",
            "kernel-source": "4.12.14-122.153.1",
            "kernel-syms": "4.12.14-122.153.1",
            "kernel-default-devel": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.153.1",
            "kernel-devel": "4.12.14-122.153.1",
            "kernel-default-base": "4.12.14-122.153.1",
            "kernel-default-man": "4.12.14-122.153.1",
            "kernel-default": "4.12.14-122.153.1",
            "kernel-source": "4.12.14-122.153.1",
            "kernel-syms": "4.12.14-122.153.1",
            "kernel-default-devel": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-source

Package

Name
kernel-source
Purl
pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.153.1",
            "kernel-devel": "4.12.14-122.153.1",
            "kernel-default-base": "4.12.14-122.153.1",
            "kernel-default-man": "4.12.14-122.153.1",
            "kernel-default": "4.12.14-122.153.1",
            "kernel-source": "4.12.14-122.153.1",
            "kernel-syms": "4.12.14-122.153.1",
            "kernel-default-devel": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 12 SP5 / kernel-syms

Package

Name
kernel-syms
Purl
pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-macros": "4.12.14-122.153.1",
            "kernel-devel": "4.12.14-122.153.1",
            "kernel-default-base": "4.12.14-122.153.1",
            "kernel-default-man": "4.12.14-122.153.1",
            "kernel-default": "4.12.14-122.153.1",
            "kernel-source": "4.12.14-122.153.1",
            "kernel-syms": "4.12.14-122.153.1",
            "kernel-default-devel": "4.12.14-122.153.1"
        }
    ]
}

SUSE:Linux Enterprise Workstation Extension 12 SP5 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.12.14-122.153.1

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-default-extra": "4.12.14-122.153.1"
        }
    ]
}