<div class="container">
<h1>Security update for the Linux Kernel</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-SU-2023:3329-1</td>
</tr>
<tr>
<th>Rating:</th>
<td>important</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1188885">#1188885</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1202670">#1202670</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1206418">#1206418</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207526">#1207526</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207528">#1207528</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1211738">#1211738</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1212266">#1212266</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213167">#1213167</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213287">#1213287</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213350">#1213350</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213585">#1213585</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213586">#1213586</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213588">#1213588</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213705">#1213705</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213747">#1213747</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213766">#1213766</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213819">#1213819</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213823">#1213823</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213825">#1213825</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213827">#1213827</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>
Cross-References:
</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2022-40982.html">CVE-2022-40982</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-0459.html">CVE-2023-0459</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-20569.html">CVE-2023-20569</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-3567.html">CVE-2023-3567</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-3609.html">CVE-2023-3609</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-3611.html">CVE-2023-3611</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-3776.html">CVE-2023-3776</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>CVSS scores:</th>
<td>
<ul class="list-group">
<li class="list-group-item">
<span class="cvss-reference">CVE-2022-40982</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.2</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2022-40982</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.5</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-0459</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">4.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-0459</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.5</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-20569</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">5.6</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-3567</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-3567</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-3609</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">7.0</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-3609</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-3611</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-3611</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-3776</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">6.7</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-3776</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">7.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H</span>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 12 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Real Time 12 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Server 12 SP5</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that solves seven vulnerabilities and has 13 fixes can now be installed.</p>
<h2>Description:</h2>
<p>The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security and bugfixes.</p>
<p>The following security bugs were fixed:</p>
<ul>
<li>CVE-2022-40982: Fixed transient execution attack called "Gather Data Sampling" (bsc#1206418).</li>
<li>CVE-2023-0459: Fixed information leak in __uaccess_begin_nospec (bsc#1211738).</li>
<li>CVE-2023-20569: Fixed side channel attack ‘Inception’ or ‘RAS Poisoning’ (bsc#1213287).</li>
<li>CVE-2023-3567: Fixed a use-after-free in vcs_read in drivers/tty/vt/vc_screen.c (bsc#1213167).</li>
<li>CVE-2023-3609: Fixed reference counter leak leading to overflow in net/sched (bsc#1213586).</li>
<li>CVE-2023-3611: Fixed an out-of-bounds write in net/sched sch_qfq(bsc#1213585).</li>
<li>CVE-2023-3776: Fixed improper refcount update in cls_fw leads to use-after-free (bsc#1213588).</li>
</ul>
<p>The following non-security bugs were fixed:</p>
<ul>
<li>fix double fget() in vhost_net_set_backend() (git-fixes).</li>
<li>nfsv4.1: always send a reclaim_complete after establishing lease (git-fixes).</li>
<li>sunrpc: fix uaf in svc_tcp_listen_data_ready() (git-fixes).</li>
<li>sunrpc: remove the maximum number of retries in call_bind_status (git-fixes).</li>
<li>update suse/s390-dasd-fix-no-record-found-for-raw_track_access (git-fixes bsc#1212266 bsc#1207528).</li>
<li>update suse/scsi-zfcp-fix-missing-auto-port-scan-and-thus-missing-target-ports (git-fixes bsc#1202670).</li>
<li>block: fix a source code comment in include/uapi/linux/blkzoned.h (git-fixes).</li>
<li>kabi fix test</li>
<li>kernel-binary.spec.in: remove superfluous %% in supplements fixes: 02b7735e0caf ("rpm/kernel-binary.spec.in: add enhances and supplements tags to in-tree kmps")</li>
<li>livepatch: check kzalloc return values (git-fixes).</li>
<li>media: videodev2.h: fix struct v4l2_input tuner index comment (git-fixes).</li>
<li>net/sched: sch_qfq: refactor parsing of netlink parameters (bsc#1213585).</li>
<li>net: skip virtio_net_hdr_set_proto if protocol already set (git-fixes).</li>
<li>net: virtio_net_hdr_to_skb: count transport header in ufo (git-fixes).</li>
<li>nfsd: fix double fget() bug in __write_ports_addfd() (git-fixes).</li>
<li>powerpc/64: update speculation_store_bypass in /proc/<pid>/status (bsc#1188885 ltc#193722 git-fixes).</li>
<li>powerpc/security: fix speculation_store_bypass reporting on power10 (bsc#1188885 ltc#193722 git-fixes).</li>
<li>rpm/check-for-config-changes: ignore also riscv_isa_<em> and dynamic_sigframe they depend on config_toolchain_has_</em>.</li>
<li>s390/cio: add dev_busid sysfs entry for each subchannel (bsc#1207526).</li>
<li>s390/cio: check the subchannel validity for dev_busid (bsc#1207526).</li>
<li>s390/cio: introduce io_subchannel_type (bsc#1207526).</li>
<li>s390/cpum_sf: adjust sampling interval to avoid hitting sample limits (git-fixes bsc#1213827).</li>
<li>s390/maccess: add no dat mode to kernel_write (git-fixes bsc#1213825).</li>
<li>s390/numa: move initial setup of node_to_cpumask_map (git-fixes bsc#1213766).</li>
<li>scsi: qla2xxx: adjust iocb resource on qpair create (bsc#1213747).</li>
<li>scsi: qla2xxx: array index may go out of bound (bsc#1213747).</li>
<li>scsi: qla2xxx: avoid fcport pointer dereference (bsc#1213747).</li>
<li>scsi: qla2xxx: check valid rport returned by fc_bsg_to_rport() (bsc#1213747).</li>
<li>scsi: qla2xxx: correct the index of array (bsc#1213747).</li>
<li>scsi: qla2xxx: drop useless list_head (bsc#1213747).</li>
<li>scsi: qla2xxx: fix null pointer dereference in target mode (bsc#1213747).</li>
<li>scsi: qla2xxx: fix tmf leak through (bsc#1213747).</li>
<li>scsi: qla2xxx: fix buffer overrun (bsc#1213747).</li>
<li>scsi: qla2xxx: fix command flush during tmf (bsc#1213747).</li>
<li>scsi: qla2xxx: fix deletion race condition (bsc#1213747).</li>
<li>scsi: qla2xxx: fix end of loop test (bsc#1213747).</li>
<li>scsi: qla2xxx: fix erroneous link up failure (bsc#1213747).</li>
<li>scsi: qla2xxx: fix error code in qla2x00_start_sp() (bsc#1213747).</li>
<li>scsi: qla2xxx: fix potential null pointer dereference (bsc#1213747).</li>
<li>scsi: qla2xxx: fix session hang in gnl (bsc#1213747).</li>
<li>scsi: qla2xxx: limit tmf to 8 per function (bsc#1213747).</li>
<li>scsi: qla2xxx: pointer may be dereferenced (bsc#1213747).</li>
<li>scsi: qla2xxx: remove unused nvme_ls_waitq wait queue (bsc#1213747).</li>
<li>scsi: qla2xxx: silence a static checker warning (bsc#1213747).</li>
<li>scsi: qla2xxx: turn off noisy message log (bsc#1213747).</li>
<li>scsi: qla2xxx: update version to 10.02.08.400-k (bsc#1213747).</li>
<li>scsi: qla2xxx: update version to 10.02.08.500-k (bsc#1213747).</li>
<li>scsi: qla2xxx: fix inconsistent tmf timeout (bsc#1213747).</li>
<li>svcrdma: prevent page release when nothing was received (git-fixes).</li>
<li>vfio-ccw: prevent quiesce function going into an infinite loop (git-fixes bsc#1213819).</li>
<li>vfio-ccw: release any channel program when releasing/removing vfio-ccw mdev (git-fixes bsc#1213823).</li>
<li>vhost/test: fix build for vhost test (git-fixes).</li>
<li>vhost/vsock: use kvmalloc/kvfree for larger packets (git-fixes).</li>
<li>vhost/vsock: do not check owner in vhost_vsock_stop() while releasing (git-fixes).</li>
<li>vhost/vsock: fix incorrect used length reported to the guest (git-fixes).</li>
<li>vhost/vsock: fix packet delivery order to monitoring devices (git-fixes).</li>
<li>vhost/vsock: split packets to send using multiple buffers (git-fixes).</li>
<li>vhost: fix the calculation in vhost_overflow() (git-fixes).</li>
<li>vhost_net: disable zerocopy by default (git-fixes).</li>
<li>vhost_net: fix oob on sendmsg() failure (git-fixes).</li>
<li>virtio-balloon: fix managed page counts when migrating pages between zones (git-fixes).</li>
<li>virtio-mmio: fix missing put_device() when vm_cmdline_parent registration failed (git-fixes).</li>
<li>virtio-net: keep stop() to follow mirror sequence of open() (git-fixes).</li>
<li>virtio-pci: remove wrong address verification in vp_del_vqs() (git-fixes).</li>
<li>virtio: improve vq->broken access to avoid any compiler optimization (git-fixes).</li>
<li>virtio_net: fix error handling in virtnet_restore() (git-fixes).</li>
<li>virtio_net: bugfix overflow inside xdp_linearize_page() (git-fixes).</li>
<li>virtio_net: fix xdp_rxq_info bug after suspend/resume (git-fixes).</li>
<li>virtio_ring: fix querying of maximum dma mapping size for virtio device (git-fixes).</li>
<li>vringh: use wiov->used to check for read/write desc order (git-fixes).</li>
<li>vringh: fix __vringh_iov() when riov and wiov are different (git-fixes).</li>
<li>vsock/virtio: stop workers during the .remove() (git-fixes).</li>
<li>vsock/virtio: use rcu to avoid use-after-free on the_virtio_vsock (git-fixes).</li>
<li>xen/blkfront: Only check REQ_FUA for writes (git-fixes).</li>
</ul>
<h2>Special Instructions and Notes:</h2>
<ul>
<li>Please reboot the system after installing this update.</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE Important update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Linux Enterprise Real Time 12 SP5
<br/>
<code>zypper in -t patch SUSE-SLE-RT-12-SP5-2023-3329=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Linux Enterprise Real Time 12 SP5 (x86_64)
<ul>
<li>ocfs2-kmp-rt-debuginfo-4.12.14-10.138.1</li>
<li>dlm-kmp-rt-debuginfo-4.12.14-10.138.1</li>
<li>ocfs2-kmp-rt-4.12.14-10.138.1</li>
<li>kernel-rt-debuginfo-4.12.14-10.138.1</li>
<li>kernel-rt-debugsource-4.12.14-10.138.1</li>
<li>dlm-kmp-rt-4.12.14-10.138.1</li>
<li>gfs2-kmp-rt-debuginfo-4.12.14-10.138.1</li>
<li>kernel-rt-devel-debuginfo-4.12.14-10.138.1</li>
<li>kernel-rt_debug-devel-debuginfo-4.12.14-10.138.1</li>
<li>cluster-md-kmp-rt-4.12.14-10.138.1</li>
<li>kernel-rt_debug-debugsource-4.12.14-10.138.1</li>
<li>cluster-md-kmp-rt-debuginfo-4.12.14-10.138.1</li>
<li>kernel-rt-base-4.12.14-10.138.1</li>
<li>kernel-rt_debug-debuginfo-4.12.14-10.138.1</li>
<li>kernel-syms-rt-4.12.14-10.138.1</li>
<li>kernel-rt_debug-devel-4.12.14-10.138.1</li>
<li>gfs2-kmp-rt-4.12.14-10.138.1</li>
<li>kernel-rt-devel-4.12.14-10.138.1</li>
<li>kernel-rt-base-debuginfo-4.12.14-10.138.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Real Time 12 SP5 (noarch)
<ul>
<li>kernel-source-rt-4.12.14-10.138.1</li>
<li>kernel-devel-rt-4.12.14-10.138.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Real Time 12 SP5 (nosrc x86_64)
<ul>
<li>kernel-rt-4.12.14-10.138.1</li>
<li>kernel-rt_debug-4.12.14-10.138.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://www.suse.com/security/cve/CVE-2022-40982.html">https://www.suse.com/security/cve/CVE-2022-40982.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-0459.html">https://www.suse.com/security/cve/CVE-2023-0459.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-20569.html">https://www.suse.com/security/cve/CVE-2023-20569.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-3567.html">https://www.suse.com/security/cve/CVE-2023-3567.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-3609.html">https://www.suse.com/security/cve/CVE-2023-3609.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-3611.html">https://www.suse.com/security/cve/CVE-2023-3611.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-3776.html">https://www.suse.com/security/cve/CVE-2023-3776.html</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1188885">https://bugzilla.suse.com/show_bug.cgi?id=1188885</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1202670">https://bugzilla.suse.com/show_bug.cgi?id=1202670</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1206418">https://bugzilla.suse.com/show_bug.cgi?id=1206418</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207526">https://bugzilla.suse.com/show_bug.cgi?id=1207526</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207528">https://bugzilla.suse.com/show_bug.cgi?id=1207528</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1211738">https://bugzilla.suse.com/show_bug.cgi?id=1211738</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1212266">https://bugzilla.suse.com/show_bug.cgi?id=1212266</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213167">https://bugzilla.suse.com/show_bug.cgi?id=1213167</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213287">https://bugzilla.suse.com/show_bug.cgi?id=1213287</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213350">https://bugzilla.suse.com/show_bug.cgi?id=1213350</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213585">https://bugzilla.suse.com/show_bug.cgi?id=1213585</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213586">https://bugzilla.suse.com/show_bug.cgi?id=1213586</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213588">https://bugzilla.suse.com/show_bug.cgi?id=1213588</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213705">https://bugzilla.suse.com/show_bug.cgi?id=1213705</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213747">https://bugzilla.suse.com/show_bug.cgi?id=1213747</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213766">https://bugzilla.suse.com/show_bug.cgi?id=1213766</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213819">https://bugzilla.suse.com/show_bug.cgi?id=1213819</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213823">https://bugzilla.suse.com/show_bug.cgi?id=1213823</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213825">https://bugzilla.suse.com/show_bug.cgi?id=1213825</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1213827">https://bugzilla.suse.com/show_bug.cgi?id=1213827</a>
</li>
</ul>
</div>