Detections
Analytics
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1641-1)
high Nessus Plugin ID 197051
Synopsis
The remote SUSE host is missing one or more security updates.Description
The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1641-1 advisory.The SUSE Linux Enterprise 15 SP4 LTSS kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-27389: Fixed pstore inode handling with d_invalidate() (bsc#1223705).
- CVE-2024-27043: Fixed a use-after-free in edia/dvbdev in different places (bsc#1223824).
- CVE-2024-26816: Ignore relocations in .notes section when building with CONFIG_XEN_PV=y (bsc#1222624).
- CVE-2024-26773: Fixed ext4 block allocation from corrupted group in ext4_mb_try_best_found() (bsc#1222618).
- CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222726).
- CVE-2024-26764: Fixed IOCB_AIO_RW check in fs/aio before the struct aio_kiocb conversion (bsc#1222721).
- CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585).
- CVE-2024-26727: Fixed assertion if a newly created btrfs subvolume already gets read (bsc#1222536).
- CVE-2024-26704: Fixed a double-free of blocks due to wrong extents moved_len in ext4 (bsc#1222422).
- CVE-2024-26689: Fixed a use-after-free in encode_cap_msg() (bsc#1222503).
- CVE-2024-26687: Fixed xen/events close evtchn after mapping cleanup (bsc#1222435).
- CVE-2024-26642: Fixed the set of anonymous timeout flag in netfilter nf_tables (bsc#1221830).
- CVE-2024-26614: Fixed the initialization of accept_queue's spinlocks (bsc#1221293).
- CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221299).
- CVE-2024-26601: Fixed ext4 buddy bitmap corruption via fast commit replay (bsc#1220342).
- CVE-2024-25742: Fixed insufficient validation during #VC instruction emulation in x86/sev (bsc#1221725).
- CVE-2024-23850: Fixed double free of anonymous device after snapshot creation failure (bsc#1219126).
- CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1219169).
- CVE-2024-22099: Fixed a null-pointer-dereference in rfcomm_check_security (bsc#1219170).
- CVE-2024-0841: Fixed a null pointer dereference in the hugetlbfs_fill_super function in hugetlbfs (HugeTLB pages) functionality (bsc#1219264).
- CVE-2023-7192: Fixed a memory leak problem in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c (bsc#1218479).
- CVE-2023-7042: Fixed a null-pointer-dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (bsc#1218336).
- CVE-2023-6270: Fixed a use-after-free issue in aoecmd_cfg_pkts (bsc#1218562).
- CVE-2023-52628: Fixed 4-byte stack OOB write in nftables (bsc#1222117).
- CVE-2023-52616: Fixed unexpected pointer access in crypto/lib/mpi in mpi_ec_init (bsc#1221612).
- CVE-2023-52607: Fixed NULL pointer dereference in pgtable_cache_add kasprintf() (bsc#1221061).
- CVE-2023-52591: Fixed a possible reiserfs filesystem corruption via directory renaming (bsc#1221044).
- CVE-2023-52590: Fixed a possible ocfs2 filesystem corruption via directory renaming (bsc#1221088).
- CVE-2023-52500: Fixed information leaking when processing OPC_INB_SET_CONTROLLER_CONFIG command (bsc#1220883).
- CVE-2023-52476: Fixed possible unhandled page fault via perf sampling NMI during vsyscall (bsc#1220703).
- CVE-2023-4881: Fixed a out-of-bounds write flaw in the netfilter subsystem that could lead to potential information disclosure or a denial of service (bsc#1215221).
- CVE-2023-0160: Fixed deadlock flaw in BPF that could allow a local user to potentially crash the system (bsc#1209657).
- CVE-2022-48662: Fixed a general protection fault (GPF) in i915_perf_open_ioctl (bsc#1223505).
- CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223513).
- CVE-2021-47202: Fixed NULL pointer dereferences in of_thermal_ functions (bsc#1222878)
- CVE-2021-47195: Fixed use-after-free inside SPI via add_lock mutex (bsc#1222832).
- CVE-2021-47189: Fixed denial of service due to memory ordering issues between normal and ordered work functions in btrfs (bsc#1222706).
- CVE-2021-47185: Fixed a softlockup issue in flush_to_ldisc in tty tty_buffer (bsc#1222669).
- CVE-2021-47183: Fixed a null pointer dereference during link down processing in scsi lpfc (bsc#1192145, bsc#1222664).
- CVE-2021-47182: Fixed scsi_mode_sense() buffer length handling (bsc#1222662).
- CVE-2021-47181: Fixed a null pointer dereference caused by calling platform_get_resource() (bsc#1222660).
The following non-security bugs were fixed:
- Call flush_delayed_fput() from nfsd main-loop (bsc#1223380).
- ibmvfc: make 'max_sectors' a module option (bsc#1216223).
- scsi: Update max_hw_sectors on rescan (bsc#1216223).
Tenable has extracted the preceding description block directly from the SUSE security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected packages.See Also
https://bugzilla.suse.com/1192145
https://bugzilla.suse.com/1209657
https://bugzilla.suse.com/1215221
https://bugzilla.suse.com/1216223
https://bugzilla.suse.com/1218336
https://bugzilla.suse.com/1218479
https://bugzilla.suse.com/1218562
https://bugzilla.suse.com/1219104
https://bugzilla.suse.com/1219126
https://bugzilla.suse.com/1219169
https://bugzilla.suse.com/1219170
https://bugzilla.suse.com/1219264
https://bugzilla.suse.com/1220342
https://bugzilla.suse.com/1220703
https://bugzilla.suse.com/1220761
https://bugzilla.suse.com/1220883
https://bugzilla.suse.com/1221044
https://bugzilla.suse.com/1221061
https://bugzilla.suse.com/1221088
https://bugzilla.suse.com/1221293
https://bugzilla.suse.com/1221299
https://bugzilla.suse.com/1221612
https://bugzilla.suse.com/1221725
https://bugzilla.suse.com/1221830
https://bugzilla.suse.com/1222117
https://bugzilla.suse.com/1222422
https://bugzilla.suse.com/1222430
https://bugzilla.suse.com/1222435
https://bugzilla.suse.com/1222482
https://bugzilla.suse.com/1222503
https://bugzilla.suse.com/1222536
https://bugzilla.suse.com/1222559
https://bugzilla.suse.com/1222585
https://bugzilla.suse.com/1222618
https://bugzilla.suse.com/1222624
https://bugzilla.suse.com/1222660
https://bugzilla.suse.com/1222662
https://bugzilla.suse.com/1222664
https://bugzilla.suse.com/1222666
https://bugzilla.suse.com/1222669
https://bugzilla.suse.com/1222671
https://bugzilla.suse.com/1222703
https://bugzilla.suse.com/1222704
https://bugzilla.suse.com/1222706
https://bugzilla.suse.com/1222709
https://bugzilla.suse.com/1222721
https://bugzilla.suse.com/1222726
https://bugzilla.suse.com/1222773
https://bugzilla.suse.com/1222776
https://bugzilla.suse.com/1222785
https://bugzilla.suse.com/1222787
https://bugzilla.suse.com/1222790
https://bugzilla.suse.com/1222791
https://bugzilla.suse.com/1222792
https://bugzilla.suse.com/1222796
https://bugzilla.suse.com/1222824
https://bugzilla.suse.com/1222829
https://bugzilla.suse.com/1222832
https://bugzilla.suse.com/1222836
https://bugzilla.suse.com/1222838
https://bugzilla.suse.com/1222866
https://bugzilla.suse.com/1222867
https://bugzilla.suse.com/1222869
https://bugzilla.suse.com/1222876
https://bugzilla.suse.com/1222878
https://bugzilla.suse.com/1222879
https://bugzilla.suse.com/1222881
https://bugzilla.suse.com/1222883
https://bugzilla.suse.com/1222888
https://bugzilla.suse.com/1222894
https://bugzilla.suse.com/1222901
https://bugzilla.suse.com/1223016
https://bugzilla.suse.com/1223187
https://bugzilla.suse.com/1223380
https://bugzilla.suse.com/1223474
https://bugzilla.suse.com/1223475
https://bugzilla.suse.com/1223477
https://bugzilla.suse.com/1223479
https://bugzilla.suse.com/1223482
https://bugzilla.suse.com/1223484
https://bugzilla.suse.com/1223487
https://bugzilla.suse.com/1223503
https://bugzilla.suse.com/1223505
https://bugzilla.suse.com/1223509
https://bugzilla.suse.com/1223513
https://bugzilla.suse.com/1223516
https://bugzilla.suse.com/1223517
https://bugzilla.suse.com/1223518
https://bugzilla.suse.com/1223519
https://bugzilla.suse.com/1223522
https://bugzilla.suse.com/1223523
https://bugzilla.suse.com/1223705
https://bugzilla.suse.com/1223824
https://lists.suse.com/pipermail/sle-updates/2024-May/035266.html
https://www.suse.com/security/cve/CVE-2021-47047
https://www.suse.com/security/cve/CVE-2021-47181
https://www.suse.com/security/cve/CVE-2021-47182
https://www.suse.com/security/cve/CVE-2021-47183
https://www.suse.com/security/cve/CVE-2021-47184
https://www.suse.com/security/cve/CVE-2021-47185
https://www.suse.com/security/cve/CVE-2021-47187
https://www.suse.com/security/cve/CVE-2021-47188
https://www.suse.com/security/cve/CVE-2021-47189
https://www.suse.com/security/cve/CVE-2021-47191
https://www.suse.com/security/cve/CVE-2021-47192
https://www.suse.com/security/cve/CVE-2021-47193
https://www.suse.com/security/cve/CVE-2021-47194
https://www.suse.com/security/cve/CVE-2021-47195
https://www.suse.com/security/cve/CVE-2021-47196
https://www.suse.com/security/cve/CVE-2021-47197
https://www.suse.com/security/cve/CVE-2021-47198
https://www.suse.com/security/cve/CVE-2021-47199
https://www.suse.com/security/cve/CVE-2021-47200
https://www.suse.com/security/cve/CVE-2021-47201
https://www.suse.com/security/cve/CVE-2021-47202
https://www.suse.com/security/cve/CVE-2021-47203
https://www.suse.com/security/cve/CVE-2021-47204
https://www.suse.com/security/cve/CVE-2021-47205
https://www.suse.com/security/cve/CVE-2021-47206
https://www.suse.com/security/cve/CVE-2021-47207
https://www.suse.com/security/cve/CVE-2021-47209
https://www.suse.com/security/cve/CVE-2021-47210
https://www.suse.com/security/cve/CVE-2021-47211
https://www.suse.com/security/cve/CVE-2021-47212
https://www.suse.com/security/cve/CVE-2021-47215
https://www.suse.com/security/cve/CVE-2021-47216
https://www.suse.com/security/cve/CVE-2021-47217
https://www.suse.com/security/cve/CVE-2021-47218
https://www.suse.com/security/cve/CVE-2021-47219
https://www.suse.com/security/cve/CVE-2022-48631
https://www.suse.com/security/cve/CVE-2022-48637
https://www.suse.com/security/cve/CVE-2022-48638
https://www.suse.com/security/cve/CVE-2022-48647
https://www.suse.com/security/cve/CVE-2022-48648
https://www.suse.com/security/cve/CVE-2022-48650
https://www.suse.com/security/cve/CVE-2022-48651
https://www.suse.com/security/cve/CVE-2022-48653
https://www.suse.com/security/cve/CVE-2022-48654
https://www.suse.com/security/cve/CVE-2022-48655
https://www.suse.com/security/cve/CVE-2022-48656
https://www.suse.com/security/cve/CVE-2022-48657
https://www.suse.com/security/cve/CVE-2022-48660
https://www.suse.com/security/cve/CVE-2022-48662
https://www.suse.com/security/cve/CVE-2022-48663
https://www.suse.com/security/cve/CVE-2022-48667
https://www.suse.com/security/cve/CVE-2022-48668
https://www.suse.com/security/cve/CVE-2023-0160
https://www.suse.com/security/cve/CVE-2023-4881
https://www.suse.com/security/cve/CVE-2023-52476
https://www.suse.com/security/cve/CVE-2023-52500
https://www.suse.com/security/cve/CVE-2023-52590
https://www.suse.com/security/cve/CVE-2023-52591
https://www.suse.com/security/cve/CVE-2023-52607
https://www.suse.com/security/cve/CVE-2023-52616
https://www.suse.com/security/cve/CVE-2023-52628
https://www.suse.com/security/cve/CVE-2023-6270
https://www.suse.com/security/cve/CVE-2023-7042
https://www.suse.com/security/cve/CVE-2023-7192
https://www.suse.com/security/cve/CVE-2024-0841
https://www.suse.com/security/cve/CVE-2024-22099
https://www.suse.com/security/cve/CVE-2024-23307
https://www.suse.com/security/cve/CVE-2024-23848
https://www.suse.com/security/cve/CVE-2024-23850
https://www.suse.com/security/cve/CVE-2024-25742
https://www.suse.com/security/cve/CVE-2024-26601
https://www.suse.com/security/cve/CVE-2024-26610
https://www.suse.com/security/cve/CVE-2024-26614
https://www.suse.com/security/cve/CVE-2024-26642
https://www.suse.com/security/cve/CVE-2024-26687
https://www.suse.com/security/cve/CVE-2024-26688
https://www.suse.com/security/cve/CVE-2024-26689
https://www.suse.com/security/cve/CVE-2024-26704
https://www.suse.com/security/cve/CVE-2024-26727
https://www.suse.com/security/cve/CVE-2024-26733
https://www.suse.com/security/cve/CVE-2024-26739
https://www.suse.com/security/cve/CVE-2024-26764
https://www.suse.com/security/cve/CVE-2024-26766
https://www.suse.com/security/cve/CVE-2024-26773
https://www.suse.com/security/cve/CVE-2024-26792
https://www.suse.com/security/cve/CVE-2024-26816
https://www.suse.com/security/cve/CVE-2024-26898
https://www.suse.com/security/cve/CVE-2024-26903
Plugin Details
Severity: High
ID: 197051
File Name: suse_SU-2024-1641-1.nasl
Version: 1.1
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 5/15/2024
Updated: 7/10/2024
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5.3
Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C
CVSS Score Source: CVE-2024-26898
CVSS v3
Risk Factor: High
Base Score: 7.8
Temporal Score: 7
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:kernel-macros, p-cpe:/a:novell:suse_linux:kernel-zfcpdump, p-cpe:/a:novell:suse_linux:kernel-64kb-devel, p-cpe:/a:novell:suse_linux:ocfs2-kmp-default, p-cpe:/a:novell:suse_linux:dlm-kmp-default, p-cpe:/a:novell:suse_linux:kernel-default-base, p-cpe:/a:novell:suse_linux:kernel-64kb, p-cpe:/a:novell:suse_linux:kernel-default-livepatch, p-cpe:/a:novell:suse_linux:kernel-default-devel, p-cpe:/a:novell:suse_linux:kernel-devel, p-cpe:/a:novell:suse_linux:gfs2-kmp-default, p-cpe:/a:novell:suse_linux:kernel-syms, p-cpe:/a:novell:suse_linux:kernel-livepatch-5_14_21-150400_24_119-default, cpe:/o:novell:suse_linux:15, p-cpe:/a:novell:suse_linux:kernel-default-livepatch-devel, p-cpe:/a:novell:suse_linux:cluster-md-kmp-default, p-cpe:/a:novell:suse_linux:kernel-obs-build, p-cpe:/a:novell:suse_linux:kernel-default, p-cpe:/a:novell:suse_linux:kernel-source, p-cpe:/a:novell:suse_linux:reiserfs-kmp-default
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 5/14/2024
Vulnerability Publication Date: 3/17/2023
Reference Information
CVE: CVE-2021-47047, CVE-2021-47181, CVE-2021-47182, CVE-2021-47183, CVE-2021-47184, CVE-2021-47185, CVE-2021-47187, CVE-2021-47188, CVE-2021-47189, CVE-2021-47191, CVE-2021-47192, CVE-2021-47193, CVE-2021-47194, CVE-2021-47195, CVE-2021-47196, CVE-2021-47197, CVE-2021-47198, CVE-2021-47199, CVE-2021-47200, CVE-2021-47201, CVE-2021-47202, CVE-2021-47203, CVE-2021-47204, CVE-2021-47205, CVE-2021-47206, CVE-2021-47207, CVE-2021-47209, CVE-2021-47210, CVE-2021-47211, CVE-2021-47212, CVE-2021-47215, CVE-2021-47216, CVE-2021-47217, CVE-2021-47218, CVE-2021-47219, CVE-2022-48631, CVE-2022-48637, CVE-2022-48638, CVE-2022-48647, CVE-2022-48648, CVE-2022-48650, CVE-2022-48651, CVE-2022-48653, CVE-2022-48654, CVE-2022-48655, CVE-2022-48656, CVE-2022-48657, CVE-2022-48660, CVE-2022-48662, CVE-2022-48663, CVE-2022-48667, CVE-2022-48668, CVE-2023-0160, CVE-2023-4881, CVE-2023-52476, CVE-2023-52500, CVE-2023-52590, CVE-2023-52591, CVE-2023-52607, CVE-2023-52616, CVE-2023-52628, CVE-2023-6270, CVE-2023-7042, CVE-2023-7192, CVE-2024-0841, CVE-2024-22099, CVE-2024-23307, CVE-2024-23848, CVE-2024-23850, CVE-2024-25742, CVE-2024-26601, CVE-2024-26610, CVE-2024-26614, CVE-2024-26642, CVE-2024-26687, CVE-2024-26688, CVE-2024-26689, CVE-2024-26704, CVE-2024-26727, CVE-2024-26733, CVE-2024-26739, CVE-2024-26764, CVE-2024-26766, CVE-2024-26773, CVE-2024-26792, CVE-2024-26816, CVE-2024-26898, CVE-2024-26903, CVE-2024-27043, CVE-2024-27389
SuSE: SUSE-SU-2024:1641-1