Описание
Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP4)
This update for the Linux Kernel 4.12.14-95_120 fixes several issues.
The following security issues were fixed:
- CVE-2023-31436: Fixed an out-of-bounds write in qfq_change_class() because lmax can exceed QFQ_MIN_LMAX (bsc#1210989).
- CVE-2023-1390: Fixed remote DoS vulnerability in tipc_link_xmit() (bsc#1210779).
Список пакетов
SUSE Linux Enterprise Live Patching 12 SP4
kgraft-patch-4_12_14-95_120-default-4-2.1
Ссылки
- Link for SUSE-SU-2023:2666-1
- E-Mail link for SUSE-SU-2023:2666-1
- SUSE Security Ratings
- SUSE Bug 1210779
- SUSE Bug 1210989
- SUSE CVE CVE-2023-1390 page
- SUSE CVE CVE-2023-31436 page
Описание
A remote denial of service vulnerability was found in the Linux kernel's TIPC kernel module. The while loop in tipc_link_xmit() hits an unknown state while attempting to parse SKBs, which are not in the queue. Sending two small UDP packets to a system with a UDP bearer results in the CPU utilization for the system to instantly spike to 100%, causing a denial of service condition.
Затронутые продукты
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_120-default-4-2.1
Ссылки
- CVE-2023-1390
- SUSE Bug 1209289
- SUSE Bug 1210779
- SUSE Bug 1211495
Описание
qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX.
Затронутые продукты
SUSE Linux Enterprise Live Patching 12 SP4:kgraft-patch-4_12_14-95_120-default-4-2.1
Ссылки
- CVE-2023-31436
- SUSE Bug 1210940
- SUSE Bug 1211260
- SUSE Bug 1213841
- SUSE Bug 1213842
- SUSE Bug 1214128
- SUSE Bug 1223091
- SUSE Bug 1224419