The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2023-31085: Fixed a divide-by-zero error in do_div(sz,mtd->erasesize) that could cause a local DoS. (bsc#1210778)
- CVE-2023-45862: Fixed an issue in the ENE UB6250 reader driver whwere an object could potentially extend beyond the end of an allocation causing. (bsc#1216051)
- CVE-2023-34324: Fixed a possible deadlock in Linux kernel event handling. (bsc#1215745).
- CVE-2023-39189: Fixed a flaw in the Netfilter subsystem that could allow a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure. (bsc#1216046)
The following non-security bugs were fixed:
- 9p: virtio: make sure 'offs' is initialized in zc_request (git-fixes).
- audit: fix potential double free on error path from fsnotify_add_inode_mark (git-fixes).
- CKC: Clarify usage
- crypto: virtio: Fix use-after-free in virtio_crypto_skcipher_finalize_req() (git-fixes).
- iommu/amd: Fix IOMMU interrupt generation in X2APIC mode (bsc#1206010).
- iommu/amd: Remove useless irq affinity notifier (bsc#1206010).
- iommu/amd: Set iommu->int_enabled consistently when interrupts are set up (bsc#1206010).
- kabi: iommu/amd: Fix IOMMU interrupt generation in X2APIC mode (bsc#1206010).
- KVM: s390: fix sthyi error handling (git-fixes bsc#1216107).
- memcg: drop kmem.limit_in_bytes (bsc#1208788)
- mm, memcg: reconsider kmem.limit_in_bytes deprecation (bsc#1208788 bsc#1213705).
- net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read (git-fixes).
- net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg (git-fixes).
- ratelimit: Fix data-races in ___ratelimit() (git-fixes).
- ring-buffer: Fix bytes info in per_cpu buffer stats (git-fixes).
- s390/pci: fix iommu bitmap allocation (git-fixes bsc#1216513).
- s390/ptrace: fix setting syscall number (git-fixes bsc#1216340).
- s390/vdso: add missing...