SUSE-SU-2023:1895-1

Source
https://www.suse.com/support/update/announcement/2023/suse-su-20231895-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:1895-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2023:1895-1
Related
Published
2023-04-18T09:39:06Z
Modified
2023-04-18T09:39:06Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • CVE-2023-1611: Fixed an use-after-free flaw in btrfssearchslot (bsc#1209687).
  • CVE-2023-1838: Fixed an use-after-free flaw in virtio network subcomponent. This flaw could allow a local attacker to crash the system and lead to a kernel information leak problem. (bsc#1210203).

The following non-security bugs were fixed:

  • alarmtimer: Prevent starvation by small intervals and SIG_IGN (git-fixes)
  • ALSA: asihpi: check pao in control_message() (git-fixes).
  • ALSA: hda/ca0132: fixup buffer overrun at tuningctlset() (git-fixes).
  • ALSA: hda/realtek: Add quirk for Clevo X370SNW (git-fixes).
  • ALSA: hda/realtek: fix mute/micmute LEDs do not work for a HP platform (git-fixes).
  • ALSA: hda/realtek: fix mute/micmute LEDs for a HP ProBook (git-fixes).
  • ASoC: codecs: tx-macro: Fix for KASAN: slab-out-of-bounds (git-fixes).
  • can: isotp: isotp_ops: fix poll() to not report false EPOLLOUT events (git-fixes).
  • can: j1939: j1939tptxdatnew(): fix out-of-bounds memory access (git-fixes).
  • cifs: double lock in cifsreconnecttcon() (git-fixes).
  • clocksource/drivers/mediatek: Optimize systimer irq clear flow on shutdown (git-fixes).
  • drm/amd/display: Add DSC Support for Synaptics Cascaded MST Hub (git-fixes).
  • drm/etnaviv: fix reference leak when mmaping imported buffer (git-fixes).
  • drm/panfrost: Fix the panfrostmmumapfaultaddr() error path (git-fixes).
  • dt-bindings: serial: renesas,scif: Fix 4th IRQ for 4-IRQ SCIFs (git-fixes).
  • fbdev: au1200fb: Fix potential divide by zero (git-fixes).
  • fbdev: intelfb: Fix potential divide by zero (git-fixes).
  • fbdev: lxfb: Fix potential divide by zero (git-fixes).
  • fbdev: nvidia: Fix potential divide by zero (git-fixes).
  • fbdev: tgafb: Fix potential divide by zero (git-fixes).
  • ftrace: Fix issue that 'direct->addr' not restored in modifyftracedirect() (git-fixes).
  • ftrace: Mark getlockparentip() _always_inline (git-fixes).
  • gpio: davinci: Add irq chip flag to skip set wake (git-fixes).
  • gpio: GPIO_REGMAP: select REGMAP instead of depending on it (git-fixes).
  • iio: adc: ad7791: fix IRQ flags (git-fixes).
  • iio: adc: ti-ads7950: Set can_sleep flag for GPIO chip (git-fixes).
  • iio: adis16480: select CONFIG_CRC32 (git-fixes).
  • iio: dac: cio-dac: Fix max DAC write value check for 12-bit (git-fixes).
  • iio: light: cm32181: Unregister second I2C client if present (git-fixes).
  • Input: focaltech - use explicitly signed char type (git-fixes).
  • Input: goodix - add Lenovo Yoga Book X90F to ninebytesreport DMI table (git-fixes).
  • kABI workaround for xhci (git-fixes).
  • mm: mmap: remove newline at the end of the trace (git-fixes).
  • mtd: rawnand: meson: fix bitmask for length in command word (git-fixes).
  • mtd: rawnand: stm32_fmc2: remove unsupported EDO mode (git-fixes).
  • mtd: rawnand: stm32fmc2: use timings.mode instead of checking tRCmin (git-fixes).
  • mtdblock: tolerate corrected bit-flips (git-fixes).
  • nilfs2: fix sysfs interface lifetime (git-fixes).
  • platform/x86: think-lmi: Clean up display of current_value on Thinkstation (git-fixes).
  • platform/x86: think-lmi: Fix memory leak when showing current settings (git-fixes).
  • platform/x86: think-lmi: Fix memory leaks when parsing ThinkStation WMI strings (git-fixes).
  • pwm: cros-ec: Explicitly set .polarity in .get_state() (git-fixes).
  • pwm: sprd: Explicitly set .polarity in .get_state() (git-fixes).
  • rcu: Fix rcutortureread ftrace event (git-fixes).
  • ring-buffer: Fix race while reader and writer are on the same page (git-fixes).
  • timers: Prevent union confusion from unexpected (git-fixes)
  • tracing: Add tracearrayputs() to write into instance (git-fixes).
  • tracing: Fix wrong return in kprobeeventgen_test.c (git-fixes).
  • tracing: Free error logs of tracing instances (git-fixes).
  • tracing: Have tracingsnapshotinstance_cond() write errors to the appropriate instance (git-fixes).
  • tty: serial: fsllpuart: avoid checking for transfer complete when UARTCTRLSBK is asserted in lpuart32txempty (git-fixes).
  • tty: serial: sh-sci: Fix Rx on RZ/G2L SCI (git-fixes).
  • tty: serial: sh-sci: Fix transmit end interrupt handler (git-fixes).
  • usb: cdnsp: Fixes error: uninitialized symbol 'len' (git-fixes).
  • usb: typec: altmodes/displayport: Fix configure initial pin assignment (git-fixes).
  • usb: ucsi: Fix ucsi->connector race (git-fixes).
  • usb: xhci: tegra: fix sleep in atomic call (git-fixes).
  • wifi: mac80211: fix invalid drvstaprercuremove calls for non-uploaded sta (git-fixes).
  • wireguard: ratelimiter: use hrtimer in selftest (git-fixes)
  • xhci: also avoid the XHCIZERO64B_REGS quirk with a passthrough iommu (git-fixes).
  • xhci: Free the command allocated for setting LPM if we return early (git-fixes).
References

Affected packages

SUSE:Linux Enterprise Module for Public Cloud 15 SP4 / kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.46.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-devel": "5.14.21-150400.14.46.1",
            "kernel-devel-azure": "5.14.21-150400.14.46.1",
            "kernel-syms-azure": "5.14.21-150400.14.46.1",
            "kernel-source-azure": "5.14.21-150400.14.46.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP4 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/suse/kernel-source-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.46.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-devel": "5.14.21-150400.14.46.1",
            "kernel-devel-azure": "5.14.21-150400.14.46.1",
            "kernel-syms-azure": "5.14.21-150400.14.46.1",
            "kernel-source-azure": "5.14.21-150400.14.46.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 15 SP4 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.46.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-devel": "5.14.21-150400.14.46.1",
            "kernel-devel-azure": "5.14.21-150400.14.46.1",
            "kernel-syms-azure": "5.14.21-150400.14.46.1",
            "kernel-source-azure": "5.14.21-150400.14.46.1"
        }
    ]
}

openSUSE:Leap 15.4 / kernel-azure

Package

Name
kernel-azure
Purl
pkg:rpm/opensuse/kernel-azure&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.46.1

Ecosystem specific

{
    "binaries": [
        {
            "reiserfs-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-devel-azure": "5.14.21-150400.14.46.1",
            "dlm-kmp-azure": "5.14.21-150400.14.46.1",
            "cluster-md-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-extra": "5.14.21-150400.14.46.1",
            "gfs2-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-optional": "5.14.21-150400.14.46.1",
            "kernel-azure-devel": "5.14.21-150400.14.46.1",
            "kernel-azure": "5.14.21-150400.14.46.1",
            "kselftests-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-syms-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-livepatch-devel": "5.14.21-150400.14.46.1",
            "ocfs2-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-source-azure": "5.14.21-150400.14.46.1"
        }
    ]
}

openSUSE:Leap 15.4 / kernel-source-azure

Package

Name
kernel-source-azure
Purl
pkg:rpm/opensuse/kernel-source-azure&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.46.1

Ecosystem specific

{
    "binaries": [
        {
            "reiserfs-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-devel-azure": "5.14.21-150400.14.46.1",
            "dlm-kmp-azure": "5.14.21-150400.14.46.1",
            "cluster-md-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-extra": "5.14.21-150400.14.46.1",
            "gfs2-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-optional": "5.14.21-150400.14.46.1",
            "kernel-azure-devel": "5.14.21-150400.14.46.1",
            "kernel-azure": "5.14.21-150400.14.46.1",
            "kselftests-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-syms-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-livepatch-devel": "5.14.21-150400.14.46.1",
            "ocfs2-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-source-azure": "5.14.21-150400.14.46.1"
        }
    ]
}

openSUSE:Leap 15.4 / kernel-syms-azure

Package

Name
kernel-syms-azure
Purl
pkg:rpm/opensuse/kernel-syms-azure&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.14.21-150400.14.46.1

Ecosystem specific

{
    "binaries": [
        {
            "reiserfs-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-devel-azure": "5.14.21-150400.14.46.1",
            "dlm-kmp-azure": "5.14.21-150400.14.46.1",
            "cluster-md-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-extra": "5.14.21-150400.14.46.1",
            "gfs2-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-optional": "5.14.21-150400.14.46.1",
            "kernel-azure-devel": "5.14.21-150400.14.46.1",
            "kernel-azure": "5.14.21-150400.14.46.1",
            "kselftests-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-syms-azure": "5.14.21-150400.14.46.1",
            "kernel-azure-livepatch-devel": "5.14.21-150400.14.46.1",
            "ocfs2-kmp-azure": "5.14.21-150400.14.46.1",
            "kernel-source-azure": "5.14.21-150400.14.46.1"
        }
    ]
}