kernel-devel-6.5.6-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:13305-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z kernel-devel-6.5.6-1.1 on GA media These are all security issues fixed in the kernel-devel-6.5.6-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-13305 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2023-1192/ SUSE CVE CVE-2023-1192 page https://www.suse.com/security/cve/CVE-2023-39192/ SUSE CVE CVE-2023-39192 page https://www.suse.com/security/cve/CVE-2023-39193/ SUSE CVE CVE-2023-39193 page https://www.suse.com/security/cve/CVE-2023-42753/ SUSE CVE CVE-2023-42753 page https://www.suse.com/security/cve/CVE-2023-42754/ SUSE CVE CVE-2023-42754 page https://www.suse.com/security/cve/CVE-2023-42756/ SUSE CVE CVE-2023-42756 page https://www.suse.com/security/cve/CVE-2023-4623/ SUSE CVE CVE-2023-4623 page https://www.suse.com/security/cve/CVE-2023-5345/ SUSE CVE CVE-2023-5345 page openSUSE Tumbleweed kernel-devel-6.5.6-1.1 kernel-macros-6.5.6-1.1 kernel-source-6.5.6-1.1 kernel-source-vanilla-6.5.6-1.1 kernel-devel-6.5.6-1.1 as a component of openSUSE Tumbleweed kernel-macros-6.5.6-1.1 as a component of openSUSE Tumbleweed kernel-source-6.5.6-1.1 as a component of openSUSE Tumbleweed kernel-source-vanilla-6.5.6-1.1 as a component of openSUSE Tumbleweed A use-after-free flaw was found in smb2_is_status_io_timeout() in CIFS in the Linux Kernel. After CIFS transfers response data to a system call, there are still local variable points to the memory region, and if the system call frees it faster than CIFS uses it, CIFS will access a free memory region, leading to a denial of service. CVE-2023-1192 openSUSE Tumbleweed:kernel-devel-6.5.6-1.1 openSUSE Tumbleweed:kernel-macros-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-vanilla-6.5.6-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-1192.html CVE-2023-1192 https://bugzilla.suse.com/1208995 SUSE Bug 1208995 A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw allows a local privileged attacker to trigger an out-of-bounds read by setting the size fields with a value beyond the array boundaries, leading to a crash or information disclosure. CVE-2023-39192 openSUSE Tumbleweed:kernel-devel-6.5.6-1.1 openSUSE Tumbleweed:kernel-macros-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-vanilla-6.5.6-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-39192.html CVE-2023-39192 https://bugzilla.suse.com/1215858 SUSE Bug 1215858 https://bugzilla.suse.com/1220015 SUSE Bug 1220015 A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure. CVE-2023-39193 openSUSE Tumbleweed:kernel-devel-6.5.6-1.1 openSUSE Tumbleweed:kernel-macros-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-vanilla-6.5.6-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-39193.html CVE-2023-39193 https://bugzilla.suse.com/1215860 SUSE Bug 1215860 https://bugzilla.suse.com/1220015 SUSE Bug 1220015 An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h->nets` array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local user to crash the system or potentially escalate their privileges on the system. CVE-2023-42753 openSUSE Tumbleweed:kernel-devel-6.5.6-1.1 openSUSE Tumbleweed:kernel-macros-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-vanilla-6.5.6-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-42753.html CVE-2023-42753 https://bugzilla.suse.com/1215150 SUSE Bug 1215150 https://bugzilla.suse.com/1218613 SUSE Bug 1218613 A NULL pointer dereference flaw was found in the Linux kernel ipv4 stack. The socket buffer (skb) was assumed to be associated with a device before calling __ip_options_compile, which is not always the case if the skb is re-routed by ipvs. This issue may allow a local user with CAP_NET_ADMIN privileges to crash the system. CVE-2023-42754 openSUSE Tumbleweed:kernel-devel-6.5.6-1.1 openSUSE Tumbleweed:kernel-macros-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-vanilla-6.5.6-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-42754.html CVE-2023-42754 https://bugzilla.suse.com/1215467 SUSE Bug 1215467 https://bugzilla.suse.com/1222212 SUSE Bug 1222212 A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lead to a kernel panic due to the invocation of `__ip_set_put` on a wrong `set`. This issue may allow a local user to crash the system. CVE-2023-42756 openSUSE Tumbleweed:kernel-devel-6.5.6-1.1 openSUSE Tumbleweed:kernel-macros-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-vanilla-6.5.6-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-42756.html CVE-2023-42756 https://bugzilla.suse.com/1215767 SUSE Bug 1215767 A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free. We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f. CVE-2023-4623 openSUSE Tumbleweed:kernel-devel-6.5.6-1.1 openSUSE Tumbleweed:kernel-macros-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-vanilla-6.5.6-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-4623.html CVE-2023-4623 https://bugzilla.suse.com/1215115 SUSE Bug 1215115 https://bugzilla.suse.com/1215440 SUSE Bug 1215440 https://bugzilla.suse.com/1217444 SUSE Bug 1217444 https://bugzilla.suse.com/1217531 SUSE Bug 1217531 https://bugzilla.suse.com/1219698 SUSE Bug 1219698 https://bugzilla.suse.com/1221578 SUSE Bug 1221578 https://bugzilla.suse.com/1221598 SUSE Bug 1221598 A use-after-free vulnerability in the Linux kernel's fs/smb/client component can be exploited to achieve local privilege escalation. In case of an error in smb3_fs_context_parse_param, ctx->password was freed but the field was not set to NULL which could lead to double free. We recommend upgrading past commit e6e43b8aa7cd3c3af686caf0c2e11819a886d705. CVE-2023-5345 openSUSE Tumbleweed:kernel-devel-6.5.6-1.1 openSUSE Tumbleweed:kernel-macros-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-6.5.6-1.1 openSUSE Tumbleweed:kernel-source-vanilla-6.5.6-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-5345.html CVE-2023-5345 https://bugzilla.suse.com/1215899 SUSE Bug 1215899 https://bugzilla.suse.com/1215971 SUSE Bug 1215971