Skip to main content

Early Access — Mondoo Vulnerability Intelligence is currently in preview.

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

SUSE-SU-2023:2537-1

UNKNOWN

Security update for the Linux Kernel

Published Jun 19, 2023

Modified 2 years ago

Fix available

Details

The SUSE Linux Enterprise 12 SP4 LTSS kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

CVE-2022-3566: Fixed race condition in the TCP Handler (bsc#1204405).
CVE-2022-45886: Fixed a .disconnect versus dvb_device_open race condition in dvb_net.c that lead to a use-after-free (bsc#1205760).
CVE-2022-45885: Fixed a race condition in dvb_frontend.c that could cause a use-after-free when a device is disconnected (bsc#1205758).
CVE-2022-45887: Fixed a memory leak in ttusb_dec.c caused by the lack of a dvb_frontend_detach call (bsc#1205762).
CVE-2022-45919: Fixed a use-after-free in dvb_ca_en50221.c that could occur if there is a disconnect after an open, because of the lack of a wait_event (bsc#1205803).
CVE-2022-45884: Fixed a use-after-free in dvbdev.c, related to dvb_register_device dynamically allocating fops (bsc#1205756).
CVE-2023-31084: Fixed a blocking issue in drivers/media/dvb-core/dvb_frontend.c (bsc#1210783).
CVE-2023-31436: Fixed an out-of-bounds write in qfq_change_class() because lmax can exceed QFQ_MIN_LMAX (bsc#1210940 bsc#1211260).
CVE-2023-2194: Fixed an out-of-bounds write vulnerability in the SLIMpro I2C device driver (bsc#1210715).
CVE-2023-32269: Fixed a use-after-free in af_netrom.c, related to the fact that accept() was also allowed for a successfully connected AF_NETROM socket (bsc#1211186).
CVE-2023-1380: A slab-out-of-bound read problem was fixed in brcmf_get_assoc_ies(), that could lead to a denial of service (bsc#1209287).
CVE-2023-2513: A use-after-free vulnerability was fixed in the ext4 filesystem, related to the way it handled the extra inode size for extended attributes (bsc#1211105).
CVE-2023-2176: A vulnerability was found in compare_netdev_and_ip in drivers/infiniband/core/cma.c in RDMA. The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege (bsc#1210629).

The following non-security bugs were fixed:

ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h (bsc#1206878).
ipv6: sr: fix out-of-bounds read when setting HMAC data (bsc#1211592).

Affected Packages

SUSE:Linux Enterprise High Availability Extension 12 SP4cluster-md-kmp-default

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise High Availability Extension 12 SP4dlm-kmp-default

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise High Availability Extension 12 SP4gfs2-kmp-default

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise High Availability Extension 12 SP4kernel-default

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise High Availability Extension 12 SP4ocfs2-kmp-default

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Live Patching 12 SP4kernel-default

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Live Patching 12 SP4kernel-default-kgraft

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Live Patching 12 SP4kernel-default-kgraft-devel

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Live Patching 12 SP4kgraft-patch-4_12_14-95_128-default

Fixed in:

1-6.3.1

SUSE:Linux Enterprise Live Patching 12 SP4kgraft-patch-SLE12-SP4_Update_36

Fixed in:

1-6.3.1

SUSE:Linux Enterprise Server 12 SP4-ESPOSkernel-default

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-ESPOSkernel-default-base

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-ESPOSkernel-default-devel

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-ESPOSkernel-devel

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-ESPOSkernel-macros

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-ESPOSkernel-source

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-ESPOSkernel-syms

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-default

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-default-base

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-default-devel

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-default-man

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-devel

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-macros

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-source

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server 12 SP4-LTSSkernel-syms

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-default

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-default-base

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-default-devel

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-devel

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-macros

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-source

Fixed in:

4.12.14-95.128.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4kernel-syms

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud 9kernel-default

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud 9kernel-default-base

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud 9kernel-default-devel

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud 9kernel-devel

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud 9kernel-macros

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud 9kernel-source

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud 9kernel-syms

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud Crowbar 9kernel-default

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud Crowbar 9kernel-default-base

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud Crowbar 9kernel-default-devel

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud Crowbar 9kernel-devel

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud Crowbar 9kernel-macros

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud Crowbar 9kernel-source

Fixed in:

4.12.14-95.128.1

SUSE:OpenStack Cloud Crowbar 9kernel-syms

Fixed in:

4.12.14-95.128.1

References

REPORThttps://bugzilla.suse.com/1204405 REPORThttps://bugzilla.suse.com/1205756 REPORThttps://bugzilla.suse.com/1205758 REPORThttps://bugzilla.suse.com/1205760 REPORThttps://bugzilla.suse.com/1205762 REPORThttps://bugzilla.suse.com/1205803 REPORThttps://bugzilla.suse.com/1206878 REPORThttps://bugzilla.suse.com/1209287 REPORThttps://bugzilla.suse.com/1210629 REPORThttps://bugzilla.suse.com/1210715 REPORThttps://bugzilla.suse.com/1210783 REPORThttps://bugzilla.suse.com/1210940 REPORThttps://bugzilla.suse.com/1211105 REPORThttps://bugzilla.suse.com/1211186 REPORThttps://bugzilla.suse.com/1211260 REPORThttps://bugzilla.suse.com/1211592 WEBhttps://www.suse.com/security/cve/CVE-2022-3566 WEBhttps://www.suse.com/security/cve/CVE-2022-45884 WEBhttps://www.suse.com/security/cve/CVE-2022-45885 WEBhttps://www.suse.com/security/cve/CVE-2022-45886 WEBhttps://www.suse.com/security/cve/CVE-2022-45887 WEBhttps://www.suse.com/security/cve/CVE-2022-45919 WEBhttps://www.suse.com/security/cve/CVE-2023-1380 WEBhttps://www.suse.com/security/cve/CVE-2023-2176 WEBhttps://www.suse.com/security/cve/CVE-2023-2194 WEBhttps://www.suse.com/security/cve/CVE-2023-2513 WEBhttps://www.suse.com/security/cve/CVE-2023-31084 WEBhttps://www.suse.com/security/cve/CVE-2023-31436 WEBhttps://www.suse.com/security/cve/CVE-2023-32269 ADVISORYhttps://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/

Upstream

CVE-2022-3566 CVE-2022-45884 CVE-2022-45885 CVE-2022-45886 CVE-2022-45887 CVE-2022-45919 CVE-2023-1380 CVE-2023-2176 CVE-2023-2194 CVE-2023-2513 CVE-2023-31084 CVE-2023-31436 CVE-2023-32269

Related

CVE-2022-3566 CVE-2022-45884 CVE-2022-45885 CVE-2022-45886 CVE-2022-45887 CVE-2022-45919 CVE-2023-1380 CVE-2023-2176 CVE-2023-2194 CVE-2023-2513 CVE-2023-31084 CVE-2023-31436 CVE-2023-32269

Ecosystems

SUSE Linux Enterprise High Availability Extension 12 SP4 SUSE Linux Enterprise Live Patching 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9

Timeline

PublishedJun 19, 2023

ModifiedJun 19, 2023

SUSE-SU-2023:2537-1 | Mondoo Vulnerability Intelligence