Vulnerability from csaf_suse
Published
2024-02-14 08:17
Modified
2024-02-14 08:17
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-1086: Fixed a use-after-free vulnerability inside the nf_tables component that could have been exploited to achieve local privilege escalation (bsc#1219434).
- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218730).
- CVE-2023-46838: Fixed an issue with Xen netback processing of zero-length transmit fragment (bsc#1218836).
- CVE-2021-33631: Fixed an integer overflow in ext4_write_inline_data_end() (bsc#1219412).
- CVE-2023-6535: Fixed a NULL pointer dereference in nvmet_tcp_execute_request (bsc#1217988).
- CVE-2023-6536: Fixed a NULL pointer dereference in __nvmet_req_complete (bsc#1217989).
- CVE-2023-6356: Fixed a NULL pointer dereference in nvmet_tcp_build_pdu_iovec (bsc#1217987).
- CVE-2023-47233: Fixed a use-after-free in the device unplugging (disconnect the USB by hotplug) code inside the brcm80211 component (bsc#1216702).
- CVE-2023-51043: Fixed use-after-free during a race condition between a nonblocking atomic commit and a driver unload in drivers/gpu/drm/drm_atomic.c (bsc#1219120).
- CVE-2024-0775: Fixed use-after-free in __ext4_remount in fs/ext4/super.c that could allow a local user to cause an information leak problem while freeing the old quota file names before a potential failure (bsc#1219053).
- CVE-2024-0565: Fixed an out-of-bounds memory read flaw in receive_encrypted_standard in fs/smb/client/smb2ops.c (bsc#1218832).
- CVE-2023-6915: Fixed a NULL pointer dereference problem in ida_free in lib/idr.c (bsc#1218804).
- CVE-2023-6040: Fixed an out-of-bounds access vulnerability while creating a new netfilter table, lack of a safeguard against invalid nf_tables family (pf) values within `nf_tables_newtable` function (bsc#1218752).
- CVE-2023-51782: Fixed use-after-free in rose_ioctl in net/rose/af_rose.c because of a rose_accept race condition (bsc#1218757).
The following non-security bugs were fixed:
- Store the old kernel changelog entries in kernel-docs package (bsc#1218713).
- x86/entry/ia32: Ensure s32 is sign extended to s64 (bsc#1193285).
Patchnames
SUSE-2024-463,SUSE-SUSE-MicroOS-5.1-2024-463,SUSE-SUSE-MicroOS-5.2-2024-463
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for the Linux Kernel", title: "Title of the patch", }, { category: "description", text: "The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2024-1086: Fixed a use-after-free vulnerability inside the nf_tables component that could have been exploited to achieve local privilege escalation (bsc#1219434).\n- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218730).\n- CVE-2023-46838: Fixed an issue with Xen netback processing of zero-length transmit fragment (bsc#1218836).\n- CVE-2021-33631: Fixed an integer overflow in ext4_write_inline_data_end() (bsc#1219412).\n- CVE-2023-6535: Fixed a NULL pointer dereference in nvmet_tcp_execute_request (bsc#1217988).\n- CVE-2023-6536: Fixed a NULL pointer dereference in __nvmet_req_complete (bsc#1217989).\n- CVE-2023-6356: Fixed a NULL pointer dereference in nvmet_tcp_build_pdu_iovec (bsc#1217987).\n- CVE-2023-47233: Fixed a use-after-free in the device unplugging (disconnect the USB by hotplug) code inside the brcm80211 component (bsc#1216702).\n- CVE-2023-51043: Fixed use-after-free during a race condition between a nonblocking atomic commit and a driver unload in drivers/gpu/drm/drm_atomic.c (bsc#1219120).\n- CVE-2024-0775: Fixed use-after-free in __ext4_remount in fs/ext4/super.c that could allow a local user to cause an information leak problem while freeing the old quota file names before a potential failure (bsc#1219053).\n- CVE-2024-0565: Fixed an out-of-bounds memory read flaw in receive_encrypted_standard in fs/smb/client/smb2ops.c (bsc#1218832).\n- CVE-2023-6915: Fixed a NULL pointer dereference problem in ida_free in lib/idr.c (bsc#1218804).\n- CVE-2023-6040: Fixed an out-of-bounds access vulnerability while creating a new netfilter table, lack of a safeguard against invalid nf_tables family (pf) values within `nf_tables_newtable` function (bsc#1218752).\n- CVE-2023-51782: Fixed use-after-free in rose_ioctl in net/rose/af_rose.c because of a rose_accept race condition (bsc#1218757).\n\nThe following non-security bugs were fixed:\n\n- Store the old kernel changelog entries in kernel-docs package (bsc#1218713).\n- x86/entry/ia32: Ensure s32 is sign extended to s64 (bsc#1193285).\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2024-463,SUSE-SUSE-MicroOS-5.1-2024-463,SUSE-SUSE-MicroOS-5.2-2024-463", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_0463-1.json", }, { category: "self", summary: "URL for SUSE-SU-2024:0463-1", url: "https://www.suse.com/support/update/announcement/2024/suse-su-20240463-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2024:0463-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017916.html", }, { category: "self", summary: "SUSE Bug 1108281", url: "https://bugzilla.suse.com/1108281", }, { category: "self", summary: "SUSE Bug 1193285", url: "https://bugzilla.suse.com/1193285", }, { category: "self", summary: "SUSE Bug 1216702", url: "https://bugzilla.suse.com/1216702", }, { category: "self", summary: "SUSE Bug 1217987", url: "https://bugzilla.suse.com/1217987", }, { category: "self", summary: "SUSE Bug 1217988", url: "https://bugzilla.suse.com/1217988", }, { category: "self", summary: "SUSE Bug 1217989", url: "https://bugzilla.suse.com/1217989", }, { category: "self", summary: "SUSE Bug 1218713", url: "https://bugzilla.suse.com/1218713", }, { category: "self", summary: "SUSE Bug 1218730", url: "https://bugzilla.suse.com/1218730", }, { category: "self", summary: "SUSE Bug 1218752", url: "https://bugzilla.suse.com/1218752", }, { category: "self", summary: "SUSE Bug 1218757", url: "https://bugzilla.suse.com/1218757", }, { category: "self", summary: "SUSE Bug 1218768", url: "https://bugzilla.suse.com/1218768", }, { category: "self", summary: "SUSE Bug 1218804", url: "https://bugzilla.suse.com/1218804", }, { category: "self", summary: "SUSE Bug 1218832", url: "https://bugzilla.suse.com/1218832", }, { category: "self", summary: "SUSE Bug 1218836", url: "https://bugzilla.suse.com/1218836", }, { category: "self", summary: "SUSE Bug 1219053", url: "https://bugzilla.suse.com/1219053", }, { category: "self", summary: "SUSE Bug 1219120", url: "https://bugzilla.suse.com/1219120", }, { category: "self", summary: "SUSE Bug 1219412", url: "https://bugzilla.suse.com/1219412", }, { category: "self", summary: "SUSE Bug 1219434", url: "https://bugzilla.suse.com/1219434", }, { category: "self", summary: "SUSE CVE CVE-2021-33631 page", url: "https://www.suse.com/security/cve/CVE-2021-33631/", }, { category: "self", summary: "SUSE CVE CVE-2023-46838 page", url: "https://www.suse.com/security/cve/CVE-2023-46838/", }, { category: "self", summary: "SUSE CVE CVE-2023-47233 page", url: "https://www.suse.com/security/cve/CVE-2023-47233/", }, { category: "self", summary: "SUSE CVE CVE-2023-51043 page", url: "https://www.suse.com/security/cve/CVE-2023-51043/", }, { category: "self", summary: "SUSE CVE CVE-2023-51780 page", url: "https://www.suse.com/security/cve/CVE-2023-51780/", }, { category: "self", summary: "SUSE CVE CVE-2023-51782 page", url: "https://www.suse.com/security/cve/CVE-2023-51782/", }, { category: "self", summary: "SUSE CVE CVE-2023-6040 page", url: "https://www.suse.com/security/cve/CVE-2023-6040/", }, { category: "self", summary: "SUSE CVE CVE-2023-6356 page", url: "https://www.suse.com/security/cve/CVE-2023-6356/", }, { category: "self", summary: "SUSE CVE CVE-2023-6535 page", url: "https://www.suse.com/security/cve/CVE-2023-6535/", }, { category: "self", summary: "SUSE CVE CVE-2023-6536 page", url: "https://www.suse.com/security/cve/CVE-2023-6536/", }, { category: "self", summary: "SUSE CVE CVE-2023-6915 page", url: "https://www.suse.com/security/cve/CVE-2023-6915/", }, { category: "self", summary: "SUSE CVE CVE-2024-0565 page", url: "https://www.suse.com/security/cve/CVE-2024-0565/", }, { category: "self", summary: "SUSE CVE CVE-2024-0775 page", url: "https://www.suse.com/security/cve/CVE-2024-0775/", }, { category: "self", summary: "SUSE CVE CVE-2024-1086 page", url: "https://www.suse.com/security/cve/CVE-2024-1086/", }, ], title: "Security update for the Linux Kernel", tracking: { current_release_date: "2024-02-14T08:17:58Z", generator: { date: "2024-02-14T08:17:58Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2024:0463-1", initial_release_date: "2024-02-14T08:17:58Z", revision_history: [ { date: "2024-02-14T08:17:58Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "kernel-devel-rt-5.3.18-150300.158.1.noarch", product: { name: "kernel-devel-rt-5.3.18-150300.158.1.noarch", product_id: "kernel-devel-rt-5.3.18-150300.158.1.noarch", }, }, { category: "product_version", name: "kernel-source-rt-5.3.18-150300.158.1.noarch", product: { name: "kernel-source-rt-5.3.18-150300.158.1.noarch", product_id: "kernel-source-rt-5.3.18-150300.158.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "cluster-md-kmp-rt-5.3.18-150300.158.1.x86_64", product: { name: "cluster-md-kmp-rt-5.3.18-150300.158.1.x86_64", product_id: "cluster-md-kmp-rt-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "cluster-md-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product: { name: "cluster-md-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product_id: "cluster-md-kmp-rt_debug-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "dlm-kmp-rt-5.3.18-150300.158.1.x86_64", product: { name: "dlm-kmp-rt-5.3.18-150300.158.1.x86_64", product_id: "dlm-kmp-rt-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "dlm-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product: { name: "dlm-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product_id: "dlm-kmp-rt_debug-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "gfs2-kmp-rt-5.3.18-150300.158.1.x86_64", product: { name: "gfs2-kmp-rt-5.3.18-150300.158.1.x86_64", product_id: "gfs2-kmp-rt-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "gfs2-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product: { name: "gfs2-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product_id: "gfs2-kmp-rt_debug-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt-devel-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt-devel-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt-devel-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt-extra-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt-extra-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt-extra-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt-livepatch-devel-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt-livepatch-devel-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt-livepatch-devel-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt-optional-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt-optional-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt-optional-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt_debug-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt_debug-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt_debug-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt_debug-devel-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt_debug-devel-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt_debug-devel-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt_debug-extra-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt_debug-extra-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt_debug-extra-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt_debug-livepatch-devel-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt_debug-livepatch-devel-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt_debug-livepatch-devel-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-rt_debug-optional-5.3.18-150300.158.1.x86_64", product: { name: "kernel-rt_debug-optional-5.3.18-150300.158.1.x86_64", product_id: "kernel-rt_debug-optional-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kernel-syms-rt-5.3.18-150300.158.1.x86_64", product: { name: "kernel-syms-rt-5.3.18-150300.158.1.x86_64", product_id: "kernel-syms-rt-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kselftests-kmp-rt-5.3.18-150300.158.1.x86_64", product: { name: "kselftests-kmp-rt-5.3.18-150300.158.1.x86_64", product_id: "kselftests-kmp-rt-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "kselftests-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product: { name: "kselftests-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product_id: "kselftests-kmp-rt_debug-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "ocfs2-kmp-rt-5.3.18-150300.158.1.x86_64", product: { name: "ocfs2-kmp-rt-5.3.18-150300.158.1.x86_64", product_id: "ocfs2-kmp-rt-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "ocfs2-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product: { name: "ocfs2-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product_id: "ocfs2-kmp-rt_debug-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "reiserfs-kmp-rt-5.3.18-150300.158.1.x86_64", product: { name: "reiserfs-kmp-rt-5.3.18-150300.158.1.x86_64", product_id: "reiserfs-kmp-rt-5.3.18-150300.158.1.x86_64", }, }, { category: "product_version", name: "reiserfs-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product: { name: "reiserfs-kmp-rt_debug-5.3.18-150300.158.1.x86_64", product_id: "reiserfs-kmp-rt_debug-5.3.18-150300.158.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Micro 5.1", product: { name: "SUSE Linux Enterprise Micro 5.1", product_id: "SUSE Linux Enterprise Micro 5.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-microos:5.1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Micro 5.2", product: { name: "SUSE Linux Enterprise Micro 5.2", product_id: "SUSE Linux Enterprise Micro 5.2", product_identification_helper: { cpe: "cpe:/o:suse:suse-microos:5.2", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "kernel-rt-5.3.18-150300.158.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1", product_id: "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", }, product_reference: "kernel-rt-5.3.18-150300.158.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Micro 5.1", }, { category: "default_component_of", full_product_name: { name: "kernel-rt-5.3.18-150300.158.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2", product_id: "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", }, product_reference: "kernel-rt-5.3.18-150300.158.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Micro 5.2", }, ], }, vulnerabilities: [ { cve: "CVE-2021-33631", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33631", }, ], notes: [ { category: "general", text: "Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux (filesystem modules) allows Forced Integer Overflow.This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3, from 5.10.0-60.18.0 before 5.10.0-183.0.0.\n\n", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33631", url: "https://www.suse.com/security/cve/CVE-2021-33631", }, { category: "external", summary: "SUSE Bug 1219412 for CVE-2021-33631", url: "https://bugzilla.suse.com/1219412", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2021-33631", }, { cve: "CVE-2023-46838", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-46838", }, ], notes: [ { category: "general", text: "Transmit requests in Xen's virtual network protocol can consist of\nmultiple parts. While not really useful, except for the initial part\nany of them may be of zero length, i.e. carry no data at all. Besides a\ncertain initial portion of the to be transferred data, these parts are\ndirectly translated into what Linux calls SKB fragments. Such converted\nrequest parts can, when for a particular SKB they are all of length\nzero, lead to a de-reference of NULL in core networking code.\n", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-46838", url: "https://www.suse.com/security/cve/CVE-2023-46838", }, { category: "external", summary: "SUSE Bug 1218836 for CVE-2023-46838", url: "https://bugzilla.suse.com/1218836", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2023-46838", }, { cve: "CVE-2023-47233", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-47233", }, ], notes: [ { category: "general", text: "The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, this \"could be exploited in a real world scenario.\" This is related to brcmf_cfg80211_escan_timeout_worker in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-47233", url: "https://www.suse.com/security/cve/CVE-2023-47233", }, { category: "external", summary: "SUSE Bug 1216702 for CVE-2023-47233", url: "https://bugzilla.suse.com/1216702", }, { category: "external", summary: "SUSE Bug 1224592 for CVE-2023-47233", url: "https://bugzilla.suse.com/1224592", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2023-47233", }, { cve: "CVE-2023-51043", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-51043", }, ], notes: [ { category: "general", text: "In the Linux kernel before 6.4.5, drivers/gpu/drm/drm_atomic.c has a use-after-free during a race condition between a nonblocking atomic commit and a driver unload.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-51043", url: "https://www.suse.com/security/cve/CVE-2023-51043", }, { category: "external", summary: "SUSE Bug 1219120 for CVE-2023-51043", url: "https://bugzilla.suse.com/1219120", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.7, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2023-51043", }, { cve: "CVE-2023-51780", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-51780", }, ], notes: [ { category: "general", text: "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-51780", url: "https://www.suse.com/security/cve/CVE-2023-51780", }, { category: "external", summary: "SUSE Bug 1218730 for CVE-2023-51780", url: "https://bugzilla.suse.com/1218730", }, { category: "external", summary: "SUSE Bug 1218733 for CVE-2023-51780", url: "https://bugzilla.suse.com/1218733", }, { category: "external", summary: "SUSE Bug 1220191 for CVE-2023-51780", url: "https://bugzilla.suse.com/1220191", }, { category: "external", summary: "SUSE Bug 1221578 for CVE-2023-51780", url: "https://bugzilla.suse.com/1221578", }, { category: "external", summary: "SUSE Bug 1221598 for CVE-2023-51780", url: "https://bugzilla.suse.com/1221598", }, { category: "external", summary: "SUSE Bug 1224298 for CVE-2023-51780", url: "https://bugzilla.suse.com/1224298", }, { category: "external", summary: "SUSE Bug 1224878 for CVE-2023-51780", url: "https://bugzilla.suse.com/1224878", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "important", }, ], title: "CVE-2023-51780", }, { cve: "CVE-2023-51782", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-51782", }, ], notes: [ { category: "general", text: "An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race condition.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-51782", url: "https://www.suse.com/security/cve/CVE-2023-51782", }, { category: "external", summary: "SUSE Bug 1218757 for CVE-2023-51782", url: "https://bugzilla.suse.com/1218757", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.7, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2023-51782", }, { cve: "CVE-2023-6040", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-6040", }, ], notes: [ { category: "general", text: "An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 (netfilter: nf_tables: Reject tables of unsupported family); While creating a new netfilter table, lack of a safeguard against invalid nf_tables family (pf) values within `nf_tables_newtable` function enables an attacker to achieve out-of-bounds access.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-6040", url: "https://www.suse.com/security/cve/CVE-2023-6040", }, { category: "external", summary: "SUSE Bug 1218752 for CVE-2023-6040", url: "https://bugzilla.suse.com/1218752", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2023-6040", }, { cve: "CVE-2023-6356", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-6356", }, ], notes: [ { category: "general", text: "A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and causing kernel panic and a denial of service.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-6356", url: "https://www.suse.com/security/cve/CVE-2023-6356", }, { category: "external", summary: "SUSE Bug 1217987 for CVE-2023-6356", url: "https://bugzilla.suse.com/1217987", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2023-6356", }, { cve: "CVE-2023-6535", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-6535", }, ], notes: [ { category: "general", text: "A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, causing kernel panic and a denial of service.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-6535", url: "https://www.suse.com/security/cve/CVE-2023-6535", }, { category: "external", summary: "SUSE Bug 1217988 for CVE-2023-6535", url: "https://bugzilla.suse.com/1217988", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2023-6535", }, { cve: "CVE-2023-6536", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-6536", }, ], notes: [ { category: "general", text: "A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, causing kernel panic and a denial of service.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-6536", url: "https://www.suse.com/security/cve/CVE-2023-6536", }, { category: "external", summary: "SUSE Bug 1217989 for CVE-2023-6536", url: "https://bugzilla.suse.com/1217989", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2023-6536", }, { cve: "CVE-2023-6915", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-6915", }, ], notes: [ { category: "general", text: "A Null pointer dereference problem was found in ida_free in lib/idr.c in the Linux Kernel. This issue may allow an attacker using this library to cause a denial of service problem due to a missing check at a function return.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-6915", url: "https://www.suse.com/security/cve/CVE-2023-6915", }, { category: "external", summary: "SUSE Bug 1218804 for CVE-2023-6915", url: "https://bugzilla.suse.com/1218804", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "moderate", }, ], title: "CVE-2023-6915", }, { cve: "CVE-2024-0565", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2024-0565", }, ], notes: [ { category: "general", text: "An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2024-0565", url: "https://www.suse.com/security/cve/CVE-2024-0565", }, { category: "external", summary: "SUSE Bug 1218832 for CVE-2024-0565", url: "https://bugzilla.suse.com/1218832", }, { category: "external", summary: "SUSE Bug 1219078 for CVE-2024-0565", url: "https://bugzilla.suse.com/1219078", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "important", }, ], title: "CVE-2024-0565", }, { cve: "CVE-2024-0775", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2024-0775", }, ], notes: [ { category: "general", text: "A use-after-free flaw was found in the __ext4_remount in fs/ext4/super.c in ext4 in the Linux kernel. This flaw allows a local user to cause an information leak problem while freeing the old quota file names before a potential failure, leading to a use-after-free.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2024-0775", url: "https://www.suse.com/security/cve/CVE-2024-0775", }, { category: "external", summary: "SUSE Bug 1219053 for CVE-2024-0775", url: "https://bugzilla.suse.com/1219053", }, { category: "external", summary: "SUSE Bug 1219082 for CVE-2024-0775", url: "https://bugzilla.suse.com/1219082", }, { category: "external", summary: "SUSE Bug 1224298 for CVE-2024-0775", url: "https://bugzilla.suse.com/1224298", }, { category: "external", summary: "SUSE Bug 1224878 for CVE-2024-0775", url: "https://bugzilla.suse.com/1224878", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "important", }, ], title: "CVE-2024-0775", }, { cve: "CVE-2024-1086", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2024-1086", }, ], notes: [ { category: "general", text: "A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT.\n\nWe recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.\n\n", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2024-1086", url: "https://www.suse.com/security/cve/CVE-2024-1086", }, { category: "external", summary: "SUSE Bug 1219434 for CVE-2024-1086", url: "https://bugzilla.suse.com/1219434", }, { category: "external", summary: "SUSE Bug 1219435 for CVE-2024-1086", url: "https://bugzilla.suse.com/1219435", }, { category: "external", summary: "SUSE Bug 1224298 for CVE-2024-1086", url: "https://bugzilla.suse.com/1224298", }, { category: "external", summary: "SUSE Bug 1224878 for CVE-2024-1086", url: "https://bugzilla.suse.com/1224878", }, { category: "external", summary: "SUSE Bug 1226066 for CVE-2024-1086", url: "https://bugzilla.suse.com/1226066", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Micro 5.1:kernel-rt-5.3.18-150300.158.1.x86_64", "SUSE Linux Enterprise Micro 5.2:kernel-rt-5.3.18-150300.158.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-02-14T08:17:58Z", details: "important", }, ], title: "CVE-2024-1086", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.