exploitDog

SUSE-SU-2024:1153-1

Опубликовано: 08 апр. 2024

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122_150 fixes one issue.

The following security issue was fixed:

CVE-2023-51779: Fixed a use-after-free because of a bt_sock_ioctl race condition in bt_sock_recvmsg (bsc#1218610).

Список пакетов

SUSE Linux Enterprise Live Patching 12 SP5

kgraft-patch-4_12_14-122_150-default-13-2.3

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20241153-1/
Link for SUSE-SU-2024:1153-1
https://lists.suse.com/pipermail/sle-updates/2024-April/034860.html
E-Mail link for SUSE-SU-2024:1153-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1218610
SUSE Bug 1218610
https://www.suse.com/security/cve/CVE-2023-51779/
SUSE CVE CVE-2023-51779 page

Описание

bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition.

Затронутые продукты

SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_150-default-13-2.3

Ссылки

https://www.suse.com/security/cve/CVE-2023-51779.html
CVE-2023-51779
https://bugzilla.suse.com/1218559
SUSE Bug 1218559
https://bugzilla.suse.com/1218610
SUSE Bug 1218610
https://bugzilla.suse.com/1220015
SUSE Bug 1220015
https://bugzilla.suse.com/1220191
SUSE Bug 1220191
https://bugzilla.suse.com/1221578
SUSE Bug 1221578
https://bugzilla.suse.com/1221598
SUSE Bug 1221598

Уязвимость SUSE-SU-2024:1153-1