SUSE update for the Linux Kernel



Published: 2024-08-13
Risk Medium
Patch available YES
Number of vulnerabilities 13
CVE-ID CVE-2016-20022
CVE-2021-43389
CVE-2021-4439
CVE-2021-47219
CVE-2021-47520
CVE-2021-47580
CVE-2021-47600
CVE-2023-52752
CVE-2023-52881
CVE-2024-26923
CVE-2024-36964
CVE-2024-38599
CVE-2024-42145
CWE-ID CWE-20
CWE-129
CWE-125
CWE-416
CWE-451
CWE-667
CWE-269
CWE-119
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 11
Operating systems & Components / Operating system

kernel-ec2-base
Operating systems & Components / Operating system package or component

kernel-default-base
Operating systems & Components / Operating system package or component

kernel-syms
Operating systems & Components / Operating system package or component

kernel-xen-base
Operating systems & Components / Operating system package or component

kernel-trace-base
Operating systems & Components / Operating system package or component

kernel-trace-devel
Operating systems & Components / Operating system package or component

kernel-default-devel
Operating systems & Components / Operating system package or component

kernel-xen-devel
Operating systems & Components / Operating system package or component

kernel-source
Operating systems & Components / Operating system package or component

kernel-ec2-devel
Operating systems & Components / Operating system package or component

kernel-xen
Operating systems & Components / Operating system package or component

kernel-default
Operating systems & Components / Operating system package or component

kernel-trace
Operating systems & Components / Operating system package or component

kernel-ec2
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 13 vulnerabilities.

1) Input validation error

EUVDB-ID: #VU94740

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2016-20022

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input within the usb_parse_endpoint() function in drivers/usb/core/config.c when parsing the wMaxPacketSize field. A local user can perform a denial of service (DoS) attack.

Note, this vulnerability only affects products that are no longer supported by the supplier.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Improper Validation of Array Index

EUVDB-ID: #VU63385

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-43389

CWE-ID: CWE-129 - Improper Validation of Array Index

Exploit availability: No

Description

The vulnerability allows a local user to execute arbitrary code with elevated privileges.

The vulnerability exists due to improper validation of array index in the ISDN CAPI implementation within detach_capi_ctr() function in drivers/isdn/capi/kcapi.c. local user can send specially crafted data to the system and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Out-of-bounds read

EUVDB-ID: #VU92900

Risk: Low

CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-4439

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the detach_capi_ctr() function in drivers/isdn/capi/kcapi.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Out-of-bounds read

EUVDB-ID: #VU90324

Risk: Low

CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-47219

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the resp_report_tgtpgs() function in drivers/scsi/scsi_debug.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Use-after-free

EUVDB-ID: #VU91053

Risk: Low

CVSSv3.1: 7.7 [AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-47520

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the pch_can_rx_normal() function in drivers/net/can/pch_can.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Out-of-bounds read

EUVDB-ID: #VU92318

Risk: Low

CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-47580

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the p_fill_from_dev_buffer(), resp_inquiry(), resp_requests(), resp_mode_sense(), resp_ie_l_pg(), resp_log_sense() and resp_report_zones() functions in drivers/scsi/scsi_debug.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Use-after-free

EUVDB-ID: #VU92303

Risk: Low

CVSSv3.1: 7.7 [AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-47600

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the rebalance_children() function in drivers/md/persistent-data/dm-btree-remove.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Use-after-free

EUVDB-ID: #VU90068

Risk: Low

CVSSv3.1: 7.7 [AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-52752

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the seq_printf() and spin_unlock() functions in fs/smb/client/cifs_debug.c. A local user can escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Spoofing attack

EUVDB-ID: #VU89895

Risk: Medium

CVSSv3.1: 4.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-52881

CWE-ID: CWE-451 - User Interface (UI) Misrepresentation of Critical Information (Clickjacking, spoofing)

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to an error within the tcp_ack() function in net/ipv4/tcp_input.c, which can result in system accepting ACK responses for bytes that were never sent. A remote attacker can perform spoofing attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Improper locking

EUVDB-ID: #VU92035

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-26923

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper locking within the unix_gc() function in net/unix/garbage.c due to garbage collector does not take into account the risk of embryo getting enqueued during the garbage collection. A local user can execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Improper privilege management

EUVDB-ID: #VU93734

Risk: Low

CVSSv3.1: 3.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-36964

CWE-ID: CWE-269 - Improper Privilege Management

Exploit availability: No

Description

The vulnerability allows a local user to read and manipulate data.

The vulnerability exists due to improperly imposed permissions within the p9mode2perm() function in fs/9p/vfs_inode.c. A local user can read and manipulate data.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Out-of-bounds read

EUVDB-ID: #VU92319

Risk: Low

CVSSv3.1: 4.8 [AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-38599

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the do_jffs2_setxattr() function in fs/jffs2/xattr.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Buffer overflow

EUVDB-ID: #VU95054

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-42145

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory corruption within the MODULE_AUTHOR(), __get_agent(), send_handler(), recv_handler() and ib_umad_read() functions in drivers/infiniband/core/user_mad.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE: 11-SP4

SUSE Linux Enterprise Server 11: SP4

kernel-ec2-base: before 3.0.101-108.159.1

kernel-default-base: before 3.0.101-108.159.1

kernel-syms: before 3.0.101-108.159.1

kernel-xen-base: before 3.0.101-108.159.1

kernel-trace-base: before 3.0.101-108.159.1

kernel-trace-devel: before 3.0.101-108.159.1

kernel-default-devel: before 3.0.101-108.159.1

kernel-xen-devel: before 3.0.101-108.159.1

kernel-source: before 3.0.101-108.159.1

kernel-ec2-devel: before 3.0.101-108.159.1

kernel-xen: before 3.0.101-108.159.1

kernel-default: before 3.0.101-108.159.1

kernel-trace: before 3.0.101-108.159.1

kernel-ec2: before 3.0.101-108.159.1

External links

http://www.suse.com/support/update/announcement/2024/suse-su-20242895-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###