Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Leap:15.5:Update
patchinfo.29225
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.29225
<patchinfo incident="29225"> <issue id="1207188" tracker="bnc">VUL-0: CVE-2023-23454: kernel live patch: type-confusion in the CBQ network scheduler</issue> <issue id="1208911" tracker="bnc">VUL-0: CVE-2023-0461: kernel live patch: use-after-free in icsk_ulp_data()</issue> <issue id="1209683" tracker="bnc">VUL-0: CVE-2023-1281: kernel live patch: use-after-free vulnerability inside the traffic control index filter (tcindex) allows Privilege Escalation</issue> <issue id="1210417" tracker="bnc">VUL-0: CVE-2023-1872: kernel live patch: race condition in io_uring when unregistering fixed files</issue> <issue id="1210500" tracker="bnc">VUL-0: CVE-2023-1989: kernel live patch: Use after free bug in btsdio_remove due to race condition</issue> <issue id="1210662" tracker="bnc">VUL-0: CVE-2023-2162: kernel live patch: UAF during login when accessing the shost ipaddress</issue> <issue id="1211111" tracker="bnc">VUL-0: CVE-2023-28464: kernel live patches: double free in hci_conn_cleanup()</issue> <issue id="2023-0461" tracker="cve" /> <issue id="2023-1281" tracker="cve" /> <issue id="2023-1872" tracker="cve" /> <issue id="2023-1989" tracker="cve" /> <issue id="2023-2162" tracker="cve" /> <issue id="2023-23454" tracker="cve" /> <issue id="2023-28464" tracker="cve" /> <category>security</category> <rating>important</rating> <packager>nstange</packager> <description>This update for the Linux Kernel 5.3.18-150300_59_115 fixes several issues. The following security issues were fixed: - CVE-2023-28464: Fixed user-after-free that could lead to privilege escalation in hci_conn_cleanup in net/uetooth/hci_conn.c (bsc#1211111). - CVE-2023-1989: Fixed a use after free in btsdio_remove (bsc#1210500). - CVE-2023-1872: Fixed a use after free vulnerability in the io_uring subsystem, which could lead to local privilege escalation (bsc#1210417). - CVE-2023-1281: Fixed use after free that could lead to privilege escalation in tcindex (bsc#1209683). - CVE-2023-2162: Fixed an use-after-free flaw in iscsi_sw_tcp_session_create (bsc#1210662). - CVE-2023-0461: Fixed use-after-free in icsk_ulp_data (bsc#1208911). - CVE-2023-23454: Fixed a type-confusion in the CBQ network scheduler (bsc#1207188). </description> <summary>Security update for the Linux Kernel (Live Patch 30 for SLE 15 SP3)</summary> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor