Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2023:0407-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2023:0407-1

UNKNOWN

Security update for the Linux Kernel

Published Feb 14, 2023

Modified 2 years ago

Fix available

Details

The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

CVE-2022-47929: Fixed NULL pointer dereference bug in the traffic control subsystem (bnc#1207237).
CVE-2023-23454: Fixed denial or service in cbq_classify in net/sched/sch_cbq.c (bnc#1207036).
CVE-2022-4662: Fixed incorrect access control in the USB core subsystem that could lead a local user to crash the system (bnc#1206664).
CVE-2022-3564: Fixed use-after-free in l2cap_core.c of the Bluetooth component (bnc#1206073).

The following non-security bugs were fixed:

Added support for enabling livepatching related packages on -RT (jsc#PED-1706).
Added suse-kernel-rpm-scriptlets to kmp buildreqs (boo#1205149).
Reverted 'constraints: increase disk space for all architectures' (bsc#1203693).
HID: betop: check shape of output reports (bsc#1207186).
HID: betop: fix slab-out-of-bounds Write in betop_probe (bsc#1207186).
HID: check empty report_list in hid_validate_values() (bsc#1206784).
net: sched: atm: dont intepret cls results when asked to drop (bsc#1207036).
net: sched: cbq: dont intepret cls results when asked to drop (bsc#1207036).
sctp: fail if no bound addresses can be used for a given scope (bsc#1206677).

Affected Packages

SUSE:Linux Enterprise High Availability Extension 12 SP4cluster-md-kmp-default

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise High Availability Extension 12 SP4dlm-kmp-default

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise High Availability Extension 12 SP4gfs2-kmp-default

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise High Availability Extension 12 SP4kernel-default

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise High Availability Extension 12 SP4ocfs2-kmp-default

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Live Patching 12 SP4kernel-default

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Live Patching 12 SP4kernel-default-kgraft

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Live Patching 12 SP4kernel-default-kgraft-devel

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Live Patching 12 SP4kgraft-patch-4_12_14-95_117-default

Fixed in:

1-6.3.1

SUSE:Linux Enterprise Live Patching 12 SP4kgraft-patch-SLE12-SP4_Update_33

Fixed in:

1-6.3.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-default

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-default-base

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-default-devel

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-default-man

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-devel

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-macros

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-source

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-syms

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-default

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-default-base

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-default-devel

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-devel

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-macros

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-source

Fixed in:

4.12.14-95.117.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-syms

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud 9kernel-default

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud 9kernel-default-base

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud 9kernel-default-devel

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud 9kernel-devel

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud 9kernel-macros

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud 9kernel-source

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud 9kernel-syms

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud Crowbar 9kernel-default

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud Crowbar 9kernel-default-base

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud Crowbar 9kernel-default-devel

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud Crowbar 9kernel-devel

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud Crowbar 9kernel-macros

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud Crowbar 9kernel-source

Fixed in:

4.12.14-95.117.1

SUSE:OpenStack Cloud Crowbar 9kernel-syms

Fixed in:

4.12.14-95.117.1

References

REPORThttps://bugzilla.suse.com/1203693 REPORThttps://bugzilla.suse.com/1205149 REPORThttps://bugzilla.suse.com/1206073 REPORThttps://bugzilla.suse.com/1206664 REPORThttps://bugzilla.suse.com/1206677 REPORThttps://bugzilla.suse.com/1206784 REPORThttps://bugzilla.suse.com/1207036 REPORThttps://bugzilla.suse.com/1207186 REPORThttps://bugzilla.suse.com/1207237 WEBhttps://www.suse.com/security/cve/CVE-2022-3564 WEBhttps://www.suse.com/security/cve/CVE-2022-4662 WEBhttps://www.suse.com/security/cve/CVE-2022-47929 WEBhttps://www.suse.com/security/cve/CVE-2023-23454 ADVISORYhttps://www.suse.com/support/update/announcement/2023/suse-su-20230407-1/

Upstream

CVE-2022-3564 CVE-2022-4662 CVE-2022-47929 CVE-2023-23454

Related

CVE-2022-3564 CVE-2022-4662 CVE-2022-47929 CVE-2023-23454

Ecosystems

SUSE Linux Enterprise High Availability Extension 12 SP4 SUSE Linux Enterprise Live Patching 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9

Timeline

PublishedFeb 14, 2023

ModifiedFeb 14, 2023