Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP6) SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2024:3468-1 Final 1 1 2024-09-27T10:34:23Z current 2024-09-27T10:34:23Z 2024-09-27T10:34:23Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP6) This update for the Linux Kernel 6.4.0-150600_23_5 fixes several issues. The following security issues were fixed: - CVE-2024-40909: Fix a potential use-after-free in bpf_link_free() (bsc#1228349). - CVE-2023-52846: Prevent use after free in prp_create_tagged_frame() (bsc#1225099). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2024-3468,SUSE-SLE-Module-Live-Patching-15-SP6-2024-3468 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2024/suse-su-20243468-1/ Link for SUSE-SU-2024:3468-1 https://lists.suse.com/pipermail/sle-security-updates/2024-September/019531.html E-Mail link for SUSE-SU-2024:3468-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1225099 SUSE Bug 1225099 https://bugzilla.suse.com/1228349 SUSE Bug 1228349 https://www.suse.com/security/cve/CVE-2023-52846/ SUSE CVE CVE-2023-52846 page https://www.suse.com/security/cve/CVE-2024-40909/ SUSE CVE CVE-2024-40909 page SUSE Linux Enterprise Live Patching 15 SP6 kernel-livepatch-6_4_0-150600_23_7-default-2-150600.2.1 kernel-livepatch-6_4_0-150600_23_7-default-2-150600.2.1 as a component of SUSE Linux Enterprise Live Patching 15 SP6 In the Linux kernel, the following vulnerability has been resolved: hsr: Prevent use after free in prp_create_tagged_frame() The prp_fill_rct() function can fail. In that situation, it frees the skb and returns NULL. Meanwhile on the success path, it returns the original skb. So it's straight forward to fix bug by using the returned value. CVE-2023-52846 SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_7-default-2-150600.2.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20243468-1/ https://www.suse.com/security/cve/CVE-2023-52846.html CVE-2023-52846 https://bugzilla.suse.com/1225098 SUSE Bug 1225098 https://bugzilla.suse.com/1225099 SUSE Bug 1225099 In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a potential use-after-free in bpf_link_free() After commit 1a80dbcb2dba, bpf_link can be freed by link->ops->dealloc_deferred, but the code still tests and uses link->ops->dealloc afterward, which leads to a use-after-free as reported by syzbot. Actually, one of them should be sufficient, so just call one of them instead of both. Also add a WARN_ON() in case of any problematic implementation. CVE-2024-40909 SUSE Linux Enterprise Live Patching 15 SP6:kernel-livepatch-6_4_0-150600_23_7-default-2-150600.2.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20243468-1/ https://www.suse.com/security/cve/CVE-2024-40909.html CVE-2024-40909 https://bugzilla.suse.com/1227798 SUSE Bug 1227798 https://bugzilla.suse.com/1228349 SUSE Bug 1228349