Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP5)
Details
This update for the Linux Kernel 5.14.21-150500135 fixes several issues.
The following security issues were fixed:
CVE-2023-5717: Fixed a heap out-of-bounds write vulnerability in the Performance Events component (bsc#1216644).
CVE-2024-0775: Fixed use-after-free in _ext4remount in fs/ext4/super.c that could allow a local user to cause an information leak problem while freeing the old quota file names before a potential failure (bsc#1219079).
CVE-2024-26622: Fixed UAF write bug in tomoyowritecontrol() (bsc#1220828).
CVE-2024-1086: Fixed a use-after-free vulnerability inside the nf_tables component that could have been exploited to achieve local privilege escalation (bsc#1219435).