Detections
Analytics
SUSE SLES15 Security Update : kernel (Live Patch 10 for SLE 15 SP5) (SUSE-SU-2024:3852-1)
high Nessus Plugin ID 210034
Synopsis
The remote SUSE host is missing one or more security updates.Description
The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3852-1 advisory.This update for the Linux Kernel 5.14.21-150500_55_49 fixes several issues.
The following security issues were fixed:
- CVE-2024-35905: Fixed int overflow for stack access size (bsc#1226327).
- CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1227471).
- CVE-2024-35863: Fixed potential UAF in is_valid_oplock_break() (bsc#1225011).
- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225819).
- CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1225311).
- CVE-2024-35867: Fixed potential UAF in cifs_stats_proc_show() (bsc#1225012).
- CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1225309).
- CVE-2024-35861: Fixed potential UAF in cifs_signal_cifsd_for_reconnect() (bsc#1225312).
- CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfo_changed_notify (bsc#1225739).
- CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808)
- CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228573).
- CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1226325).
- CVE-2023-52846: hsr: Prevent use after free in prp_create_tagged_frame() (bsc#1225099).
- CVE-2022-48662: Fixed a general protection fault (GPF) in i915_perf_open_ioctl (bsc#1223521).
- CVE-2024-35817: Set gtt bound flag in amdgpu_ttm_gart_bind (bsc#1225313).
- CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1225013).
- CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1225310).
- CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223683).
- CVE-2024-26930: Fixed double free of the ha->vp_map pointer (bsc#1223681).
- CVE-2024-26828: Fixed underflow in parse_server_interfaces() (bsc#1223363).
- CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1220145).
- CVE-2024-26852: Fixed use-after-free in ip6_route_mpath_notify() (bsc#1223059).
- CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221302).
- CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223514).
- CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222882).
- CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220832).
- CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220211).
- CVE-2023-6546: Fixed a race condition in the GSM 0710 tty multiplexor via the GSMIOC_SETCONF ioctl that could lead to local privilege escalation (bsc#1222685).
- CVE-2024-26622: Fixed UAF write bug in tomoyo_write_control() (bsc#1220828).
- CVE-2023-52340: Fixed a denial of service related to ICMPv6 'Packet Too Big' packets (bsc#1219296).
Tenable has extracted the preceding description block directly from the SUSE security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected kernel-livepatch-5_14_21-150500_55_49-default package.See Also
https://www.suse.com/security/cve/CVE-2023-6546
https://www.suse.com/security/cve/CVE-2023-52340
https://www.suse.com/security/cve/CVE-2024-26585
https://www.suse.com/security/cve/CVE-2024-26622
https://www.suse.com/security/cve/CVE-2023-52502
https://bugzilla.suse.com/1219296
https://www.suse.com/security/cve/CVE-2024-23307
https://bugzilla.suse.com/1220828
https://www.suse.com/security/cve/CVE-2024-26766
https://www.suse.com/security/cve/CVE-2022-48651
https://www.suse.com/security/cve/CVE-2022-48662
https://www.suse.com/security/cve/CVE-2024-26610
https://www.suse.com/security/cve/CVE-2024-26852
https://www.suse.com/security/cve/CVE-2024-26930
https://bugzilla.suse.com/1220211
https://bugzilla.suse.com/1220832
https://bugzilla.suse.com/1221302
https://bugzilla.suse.com/1222685
https://bugzilla.suse.com/1222882
https://bugzilla.suse.com/1223514
https://www.suse.com/security/cve/CVE-2024-26828
https://www.suse.com/security/cve/CVE-2024-27398
https://www.suse.com/security/cve/CVE-2024-35817
https://www.suse.com/security/cve/CVE-2024-35861
https://www.suse.com/security/cve/CVE-2024-35862
https://www.suse.com/security/cve/CVE-2024-35863
https://www.suse.com/security/cve/CVE-2024-35864
https://www.suse.com/security/cve/CVE-2024-35867
https://www.suse.com/security/cve/CVE-2024-35905
https://www.suse.com/security/cve/CVE-2024-35950
https://bugzilla.suse.com/1223059
https://www.suse.com/security/cve/CVE-2024-26923
https://bugzilla.suse.com/1223363
https://bugzilla.suse.com/1223683
https://bugzilla.suse.com/1220145
https://bugzilla.suse.com/1223681
https://www.suse.com/security/cve/CVE-2023-52752
https://www.suse.com/security/cve/CVE-2024-36964
https://www.suse.com/security/cve/CVE-2023-52846
https://www.suse.com/security/cve/CVE-2024-36899
https://bugzilla.suse.com/1225013
https://bugzilla.suse.com/1225310
https://www.suse.com/security/cve/CVE-2024-41059
https://www.suse.com/security/cve/CVE-2021-47598
https://www.suse.com/security/cve/CVE-2024-40954
https://bugzilla.suse.com/1223521
https://bugzilla.suse.com/1225099
https://bugzilla.suse.com/1225313
https://bugzilla.suse.com/1225312
https://bugzilla.suse.com/1225739
https://bugzilla.suse.com/1226325
https://bugzilla.suse.com/1228573
https://bugzilla.suse.com/1228786
https://bugzilla.suse.com/1225011
https://bugzilla.suse.com/1225012
https://bugzilla.suse.com/1225309
https://bugzilla.suse.com/1225311
https://bugzilla.suse.com/1225819
https://bugzilla.suse.com/1227471
Plugin Details
Severity: High
ID: 210034
File Name: suse_SU-2024-3852-1.nasl
Version: 1.1
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 11/1/2024
Updated: 11/1/2024
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: High
Score: 8.9
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5.9
Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C
CVSS Score Source: CVE-2024-40954
CVSS v3
Risk Factor: High
Base Score: 7.8
Temporal Score: 7.5
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:novell:suse_linux:15, p-cpe:/a:novell:suse_linux:kernel-livepatch-5_14_21-150500_55_49-default
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 10/31/2024
Vulnerability Publication Date: 10/17/2022
Reference Information
CVE: CVE-2021-47598, CVE-2022-48651, CVE-2022-48662, CVE-2023-52340, CVE-2023-52502, CVE-2023-52752, CVE-2023-52846, CVE-2023-6546, CVE-2024-23307, CVE-2024-26585, CVE-2024-26610, CVE-2024-26622, CVE-2024-26766, CVE-2024-26828, CVE-2024-26852, CVE-2024-26923, CVE-2024-26930, CVE-2024-27398, CVE-2024-35817, CVE-2024-35861, CVE-2024-35862, CVE-2024-35863, CVE-2024-35864, CVE-2024-35867, CVE-2024-35905, CVE-2024-35950, CVE-2024-36899, CVE-2024-36964, CVE-2024-40954, CVE-2024-41059
SuSE: SUSE-SU-2024:3852-1