SUSE-SU-2023:1981-1

Опубликовано: 25 апр. 2023

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122_150 fixes one issue.

The following security issue was fixed:

CVE-2023-1118: Fixed a use-after-free bugs caused by ene_tx_irqsim() in media/rc (bsc#1208837).

Список пакетов

SUSE Linux Enterprise Live Patching 12 SP5

kgraft-patch-4_12_14-122_150-default-3-2.2

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20231981-1/
Link for SUSE-SU-2023:1981-1
https://lists.suse.com/pipermail/sle-updates/2023-April/028976.html
E-Mail link for SUSE-SU-2023:1981-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1208910
SUSE Bug 1208910
https://www.suse.com/security/cve/CVE-2023-1118/
SUSE CVE CVE-2023-1118 page

Описание

A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.

Затронутые продукты

SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_150-default-3-2.2

Ссылки

https://www.suse.com/security/cve/CVE-2023-1118.html
CVE-2023-1118
https://bugzilla.suse.com/1208837
SUSE Bug 1208837
https://bugzilla.suse.com/1208910
SUSE Bug 1208910
https://bugzilla.suse.com/1210423
SUSE Bug 1210423
https://bugzilla.suse.com/1211495
SUSE Bug 1211495
https://bugzilla.suse.com/1213841
SUSE Bug 1213841
https://bugzilla.suse.com/1213842
SUSE Bug 1213842

SUSE-SU-2023:1981-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 12 SP5

Ссылки

Уязвимость: CVE-2023-1118

Описание

Затронутые продукты

Ссылки