SUSE-SU-2024:1562-1

Опубликовано: 08 мая 2024

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-150300_59_147 fixes several issues.

The following security issues were fixed:

CVE-2024-0775: Fixed a use-after-free flaw was found in the __ext4_remount in fs/ext4/super.c in ext4 (bsc#1219079).
CVE-2024-26622: Fixed a use-after-free bug in tomoyo_write_control() (bsc#1220828).
CVE-2024-1086: Fixed a use-after-free vulnerability related to nft_verdict_init() (bsc#1219435).

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP3

kernel-livepatch-5_3_18-150300_59_147-default-6-150300.2.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20241562-1/
Link for SUSE-SU-2024:1562-1
https://lists.suse.com/pipermail/sle-security-updates/2024-May/018484.html
E-Mail link for SUSE-SU-2024:1562-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1219079
SUSE Bug 1219079
https://bugzilla.suse.com/1219435
SUSE Bug 1219435
https://bugzilla.suse.com/1220828
SUSE Bug 1220828
https://www.suse.com/security/cve/CVE-2024-0775/
SUSE CVE CVE-2024-0775 page
https://www.suse.com/security/cve/CVE-2024-1086/
SUSE CVE CVE-2024-1086 page
https://www.suse.com/security/cve/CVE-2024-26622/
SUSE CVE CVE-2024-26622 page

Описание

A use-after-free flaw was found in the __ext4_remount in fs/ext4/super.c in ext4 in the Linux kernel. This flaw allows a local user to cause an information leak problem while freeing the old quota file names before a potential failure, leading to a use-after-free.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_147-default-6-150300.2.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-0775.html
CVE-2024-0775
https://bugzilla.suse.com/1219053
SUSE Bug 1219053
https://bugzilla.suse.com/1219082
SUSE Bug 1219082
https://bugzilla.suse.com/1224298
SUSE Bug 1224298
https://bugzilla.suse.com/1224878
SUSE Bug 1224878

Описание

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT. We recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_147-default-6-150300.2.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-1086.html
CVE-2024-1086
https://bugzilla.suse.com/1219434
SUSE Bug 1219434
https://bugzilla.suse.com/1219435
SUSE Bug 1219435
https://bugzilla.suse.com/1224298
SUSE Bug 1224298
https://bugzilla.suse.com/1224878
SUSE Bug 1224878
https://bugzilla.suse.com/1226066
SUSE Bug 1226066

Описание

In the Linux kernel, the following vulnerability has been resolved: tomoyo: fix UAF write bug in tomoyo_write_control() Since tomoyo_write_control() updates head->write_buf when write() of long lines is requested, we need to fetch head->write_buf after head->io_sem is held. Otherwise, concurrent write() requests can cause use-after-free-write and double-free problems.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_147-default-6-150300.2.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-26622.html
CVE-2024-26622
https://bugzilla.suse.com/1220825
SUSE Bug 1220825
https://bugzilla.suse.com/1220828
SUSE Bug 1220828
https://bugzilla.suse.com/1224298
SUSE Bug 1224298
https://bugzilla.suse.com/1224878
SUSE Bug 1224878

SUSE-SU-2024:1562-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP3

Ссылки

Уязвимость: CVE-2024-0775

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2024-1086

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2024-26622

Описание

Затронутые продукты

Ссылки