Container summary for

SUSE-CU-2024:5293-1

This update for libzypp fixes the following issues:

• Send unescaped colons in header values. According to the STOMP protocol, it would be correct to escape colon here but the practice broke plugin receivers that didn't expect this. The incompatiblity affected customers who were running spacewalk-repo-sync and experienced issues when accessing the cloud URL. [bsc#1231043]
• Fix hang in curl code with no network connection. [bsc#1230912]

SUSE-CU-2024:5167-1

This update for gcc14 fixes the following issues:
This update ships the GNU Compiler Collection GCC 14.2. (jsc#PED-10474)
The compiler runtime libraries are provided for all SUSE Linux Enterprise 15 versions and replace the same named GCC 13 ones.
The new compilers for C, C++, and Fortran are provided for SUSE Linux Enterprise 15 SP5 and SP6, and provided in the 'Development Tools' module.
The Go, D, Ada and Modula 2 language compiler parts are available unsupported via the PackageHub repositories.
To use gcc14 compilers use:

• install 'gcc14' or 'gcc14-c++' or one of the other 'gcc14-COMPILER' frontend packages.
• override your Makefile to use CC=gcc14, CXX=g++14 and similar overrides for the other languages.

• Add libquadmath0-devel-gcc14 sub-package to allow installing quadmath.h and SO link without installing the fortran frontend

• Avoid combine spending too much compile-time and memory doing nothing on s390x. [bsc#1188441]
• Remove timezone Recommends from the libstdc++6 package. [bsc#1221601]
• Revert libgccjit dependency change. [bsc#1220724]
• Fix libgccjit-devel dependency, a newer shared library is OK.
• Fix libgccjit dependency, the corresponding compiler isn't required.
• Add cross-X-newlib-devel requires to newlib cross compilers. [bsc#1219031]
• Re-enable AutoReqProv for cross packages but filter files processed via __requires_exclude_from and __provides_exclude_from. [bsc#1219031]
• Package m2rte.so plugin in the gcc14-m2 sub-package rather than in gcc13-devel. [bsc#1210959]
• Require libstdc++6-devel-gcc14 from gcc14-m2 as m2 programs are linked against libstdc++6.

SUSE-CU-2024:4963-1

This update for wicked fixes the following issue:

• compat-suse: fix dummy interfaces configuration with `INTERFACETYPE=dummy` (bsc#1229555).
• VLANs bonds didn't come up after reboot or wicked restart (bsc#1218668).

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

• CVE-2021-47069: Fixed a crash due to relying on a stack reference past its expiry in ipc/mqueue, ipc/msg, ipc/sem (bsc#1220826).
• CVE-2022-48911: kabi: add __nf_queue_get_refs() for kabi compliance. (bsc#1229633).
• CVE-2022-48945: media: vivid: fix compose size exceed boundary (bsc#1230398).
• CVE-2024-41087: Fix double free on error (bsc#1228466).
• CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).
• CVE-2024-45003: Don't evict inode under the inode lru traversing context (bsc#1230245).
• CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).
• CVE-2024-46695: selinux,smack: do not bypass permissions check in inode_setsecctx hook (bsc#1230519).
• CVE-2024-36971: Fixed __dst_negative_advice() race (bsc#1226145).

• ext4: add check to prevent attempting to resize an fs with sparse_super2 (bsc#1230326).
• ext4: add reserved GDT blocks check (bsc#1230326).
• ext4: consolidate checks for resize of bigalloc into ext4_resize_begin (bsc#1230326).
• ext4: fix bug_on ext4_mb_use_inode_pa (bsc#1230326).
• kabi: add __nf_queue_get_refs() for kabi compliance.
• PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).
• Revert 'ext4: consolidate checks for resize of bigalloc into ext4_resize_begin' (bsc#1230326).

SUSE-CU-2024:4905-1

This update for libzypp, zypper fixes the following issues:

• API refactoring. Prevent zypper from using now private libzypp symbols (bsc#1230267)
• single_rpmtrans: fix installation of .src.rpms (bsc#1228647)

SUSE-CU-2024:4847-1

This update for expat fixes the following issues:

• CVE-2024-45492: integer overflow in function nextScaffoldPart. (bsc#1229932)
• CVE-2024-45491: integer overflow in dtdCopy. (bsc#1229931)
• CVE-2024-45490: negative length for XML_ParseBuffer not rejected. (bsc#1229930)

SUSE-CU-2024:4728-1

This update for glibc fixes the following issue:

• fix memory malloc problem: Initiate tcache shutdown even without allocations (bsc#1228661).

SUSE-CU-2024:4708-1

This update for python3 fixes the following issues:

• CVE-2024-6923: Fixed uncontrolled CPU resource consumption when in http.cookies module (bsc#1228780).
• CVE-2024-5642: Fixed buffer overread when NPN is used and invalid values are sent to the OpenSSL API (bsc#1227233).
• CVE-2024-7592: Fixed Email header injection due to unquoted newlines (bsc#1229596).
• CVE-2024-6232: excessive backtracking when parsing tarfile headers leads to ReDoS. (bsc#1230227)

• %{profileopt} variable is set according to the variable %{do_profiling} (bsc#1227999).
• Stop using %%defattr, it seems to be breaking proper executable attributes on /usr/bin/ scripts (bsc#1227378).
• Remove %suse_update_desktop_file macro as it is not useful any more.

This update for open-iscsi fixes the following issue:

• Fix issue with yast restarting the iscsid service without first restarting the iscsid socket (bsc#1206132).

SUSE-CU-2024:4625-1

This update for pam-config fixes the following issues:

• Improved check for existence of modules (bsc#1227216)

SUSE-CU-2024:4423-1

This update for perl-Bootloader fixes the following issues:

• Log grub2-install errors correctly (bsc#1221470)
• Support old grub versions (<= 2.02) that used /usr/lib (bsc#1218842)
• Create EFI boot fallback directory if necessary

SUSE-CU-2024:4412-1

This update for ncurses fixes the following issues:

• Allow the terminal description based on static fallback entries to be freed (bsc#1229028)

SUSE-CU-2024:4351-1

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:

• CVE-2024-44947: Initialize beyond-EOF page contents before setting uptodate (bsc#1229454).
• CVE-2022-48919: Fix double free race when mount fails in cifs_get_root() (bsc#1229657).
• CVE-2023-52854: Fix refcnt handling in padata_free_shell() (bsc#1225584).
• CVE-2024-43883: Do not drop references before new references are gained (bsc#1229707).
• CVE-2024-41062: Sync sock recv cb and release (bsc#1228576).
• CVE-2024-43861: Fix memory leak for not ip packets (bsc#1229500).
• CVE-2024-43882: Fixed ToCToU between perm check and set-uid/gid usage. (bsc#1229503)
• CVE-2022-48912: Fix use-after-free in __nf_register_net_hook() (bsc#1229641)
• CVE-2022-48872: Fix use-after-free race condition for maps (bsc#1229510).
• CVE-2022-48873: Do not remove map on creater_process and device_release (bsc#1229512).
• CVE-2024-42271: Fixed a use after free in iucv_sock_close(). (bsc#1229400)
• CVE-2024-42232: Fixed a race between delayed_work() and ceph_monc_stop(). (bsc#1228959)
• CVE-2024-40910: Fix refcount imbalance on inbound connections (bsc#1227832).
• CVE-2022-48686: Fixed UAF when detecting digest errors (bsc#1223948).
• CVE-2024-41009: bpf: Fix overrunning reservations in ringbuf (bsc#1228020).
• CVE-2022-48791: Fix use-after-free for aborted TMF sas_task (bsc#1228002)

• Bluetooth: L2CAP: Fix deadlock (git-fixes).
• powerpc: Remove support for PowerPC 601 (Remove unused and malformed assembly causing build error).
• sched/psi: use kernfs polling functions for PSI trigger polling (bsc#1209799 bsc#1225109).
• scsi: pm80xx: Fix TMF task completion race condition (bsc#1228002).

SUSE-CU-2024:4300-1

This update for util-linux fixes the following issues:

• agetty: Prevent login cursor escape (bsc#1194818).

This update for strace fixes the following issue:

• Change the license to the correct LGPL-2.1-or-later (bsc#1228216).

SUSE-CU-2024:4254-1

This update for curl fixes the following issues:

• CVE-2024-8096: OCSP stapling bypass with GnuTLS. (bsc#1230093)
• CVE-2024-7264: ASN.1 date parser overread. (bsc#1228535)

SUSE-CU-2024:4175-1

This update for glibc fixes the following issue:

• s390x: Fix segfault in wcsncmp (bsc#1228043).

SUSE-CU-2024:3979-1

SUSE-CU-2024:3892-1

This update for selinux-policy fixes the following issues:
Update to version 20210716+git63.fcc8cf99:

• Fix mkhomedir_helper label to match on sbin (bsc#1229701)
• allow init to run bpf programs. We do this during early startup (bsc#1215423)
• Allow sysadm_t run kernel bpf programs

SUSE-CU-2024:3830-1

This update for glib2 fixes the following issues:

• Fixed a possible use after free regression introduced by CVE-2024-34397 patch (bsc#1224044).

SUSE-CU-2024:3823-1

This update for qemu fixes the following issues:

• CVE-2023-2861: Fixed improper access control on special files via 9p protocol (bsc#1212968)
• CVE-2024-4467: Fixed denial of service and file read/write via qemu-img info command (bsc#1227322)

• Fixed qemu build compilation with binutils 2.41 upgrade (bsc#1215311)

SUSE-CU-2024:3809-1

This update for pam fixes the following issue:

• Prevent cursor escape from the login prompt (bsc#1194818).

SUSE-CU-2024:3799-1

This update for kernel-firmware fixes the following issues:

• CVE-2023-31315: Fixed validation in a model specific register (MSR) that lead to modification of SMM configuration by malicious program with ring0 access (bsc#1229069)

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:

• CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (bsc#1179610).
• CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bsc#1186463).
• CVE-2021-47126: ipv6: Fix KASAN: slab-out-of-bounds Read in fib6_nh_flush_exceptions (bsc#1221539).
• CVE-2021-47219: scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() (bsc#1222824).
• CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions (bsc#1224918).
• CVE-2021-47506: nfsd: fix use-after-free due to delegation race (bsc#1225404).
• CVE-2021-47520: can: pch_can: pch_can_rx_normal: fix use after free (bsc#1225431).
• CVE-2021-47580: scsi: scsi_debug: Fix type in min_t to avoid stack OOB (bsc#1226550).
• CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574).
• CVE-2021-47600: dm btree remove: fix use after free in rebalance_children() (bsc#1226575).
• CVE-2022-48792: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task (bsc#1228013).
• CVE-2022-48821: misc: fastrpc: avoid double fput() on failed usercopy (bsc#1227976).
• CVE-2023-52686: Fix a null pointer in opal_event_init() (bsc#1065729).
• CVE-2023-52885: SUNRPC: Fix UAF in svc_tcp_listen_data_ready() (bsc#1227750).
• CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187).
• CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519).
• CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226785).
• CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name (bsc#1227716).
• CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836).
• CVE-2024-40956: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (bsc#1227810).
• CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114).
• CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561).
• CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644).
• CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328).
• CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743).

• Fix spurious WARNING caused by a qxl driver patch (bsc#1227213)
• nfs: Clean up directory array handling (bsc#1226662).
• nfs: Clean up nfs_readdir_page_filler() (bsc#1226662).
• nfs: Clean up readdir struct nfs_cache_array (bsc#1226662).
• nfs: Do not discard readdir results (bsc#1226662).
• nfs: Do not overfill uncached readdir pages (bsc#1226662).
• nfs: Do not re-read the entire page cache to find the next cookie (bsc#1226662).
• nfs: Ensure contents of struct nfs_open_dir_context are consistent (bsc#1226662).
• nfs: Fix up directory verifier races (bsc#1226662).
• nfs: Further optimisations for 'ls -l' (bsc#1226662).
• nfs: More readdir cleanups (bsc#1226662).
• nfs: Reduce number of RPC calls when doing uncached readdir (bsc#1226662).
• nfs: Reduce use of uncached readdir (bsc#1226662).
• nfs: Support larger readdir buffers (bsc#1226662).
• nfs: Use the 64-bit server readdir cookies when possible (bsc#1226662).
• nfs: optimise readdir cache page invalidation (bsc#1226662).
• nfsv4.x: by default serialize open/close operations (bsc#1223863 bsc#1227362)
• ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834).
• powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487).
• powerpc/rtas: clean up includes (bsc#1227487).
• x.509: Fix the parser of extended key usage for length (bsc#1218820, bsc#1226666).

SUSE-CU-2024:3795-1

This update for grub2 fixes the following issues:

• Fix btrfs subvolume for platform modules not mounting at runtime when the default subvolume is the topmost root tree (bsc#1228124)

This update for curl fixes the following issues:

• CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str() (bsc#1228535)

SUSE-CU-2024:3738-1

This update for openssl-1_1 fixes the following issues:

• CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138)

SUSE-CU-2024:3647-1

This update for libzypp, zypper, libsolv, zypp-plugin fixes the following issues:

• Make sure not to statically linked installed tools (bsc#1228787)
• MediaPluginType must be resolved to a valid MediaHandler (bsc#1228208)
• Export asSolvable for YAST (bsc#1228420)
• Export CredentialManager for legacy YAST versions (bsc#1228420)
• Fix 4 typos in zypp.conf
• Fix typo in the geoip update pipeline (bsc#1228206)
• Export RepoVariablesStringReplacer for yast2 (bsc#1228138)
• Removed dependency on external find program in the repo2solv tool
• Fix return value of repodata.add_solv()
• New SOLVER_FLAG_FOCUS_NEW flag
• Report unsupported compression in solv_xfopen() with errno
• Fix return value of repodata.add_solv() in the bindings
• Fix SHA-224 oid in solv_pgpvrfy
• Translation: updated .pot file.
• Conflict with python zypp-plugin < 0.6.4 (bsc#1227793)
• Fix int overflow in Provider
• Fix error reporting on repoindex.xml parse error (bsc#1227625)
• Keep UrlResolverPlugin API public
• Blacklist /snap executables for 'zypper ps' (bsc#1226014)
• Fix handling of buddies when applying locks (bsc#1225267)
• Fix readline setup to handle Ctrl-C and Ctrl-D correctly (bsc#1227205)
• Show rpm install size before installing (bsc#1224771)
• Install zypp/APIConfig.h legacy include
• Update soname due to RepoManager refactoring and cleanup
• Workaround broken libsolv-tools-base requirements
• Strip ssl_clientkey from repo urls (bsc#1226030)
• Remove protobuf build dependency
• Lazily attach medium during refresh workflows (bsc#1223094)
• Refactor RepoManager and add Service workflows
• Let_readline_abort_on_Ctrl-C (bsc#1226493)
• packages: add '--system' to show @System packages (bsc#222971)

SUSE-CU-2024:3639-1

This update for ca-certificates-mozilla fixes the following issues:

• Updated to 2.68 state of Mozilla SSL root CAs (bsc#1227525) - Added: FIRMAPROFESIONAL CA ROOT-A WEB - Distrust: GLOBALTRUST 2020

• Updated to 2.66 state of Mozilla SSL root CAs (bsc#1220356) Added: - CommScope Public Trust ECC Root-01 - CommScope Public Trust ECC Root-02 - CommScope Public Trust RSA Root-01 - CommScope Public Trust RSA Root-02 - D-Trust SBR Root CA 1 2022 - D-Trust SBR Root CA 2 2022 - Telekom Security SMIME ECC Root 2021 - Telekom Security SMIME RSA Root 2023 - Telekom Security TLS ECC Root 2020 - Telekom Security TLS RSA Root 2023 - TrustAsia Global Root CA G3 - TrustAsia Global Root CA G4 Removed: - Autoridad de Certificacion Firmaprofesional CIF A62634068 - Chambers of Commerce Root - 2008 - Global Chambersign Root - 2008 - Security Communication Root CA - Symantec Class 1 Public Primary Certification Authority - G6 - Symantec Class 2 Public Primary Certification Authority - G6 - TrustCor ECA-1 - TrustCor RootCert CA-1 - TrustCor RootCert CA-2 - VeriSign Class 1 Public Primary Certification Authority - G3 - VeriSign Class 2 Public Primary Certification Authority - G3

SUSE-CU-2024:3571-1

This update for shadow fixes the following issues:

• Fixed not copying of skel files (bsc#1228770)

SUSE-CU-2024:3480-1

This update of various packages delivers 32bit variants to allow running Wine on SLE PackageHub 15 SP6.

SUSE-CU-2024:3416-1

This update for Public Cloud fixes the following issues:

• Added Public Cloud packages and dependencies to SLE Micro 5.5 to enhance SUSE Manager 5.0 (jsc#SMO-345): * google-guest-agent (no source changes) * google-guest-configs (no source changes) * google-guest-oslogin (no source changes) * google-osconfig-agent (no source changes) * growpart-rootgrow (no source changes) * python-azure-agent (includes bug fixes see below) * python-cssselect (no source changes) * python-instance-billing-flavor-check (no source changes) * python-toml (no source changes) * python3-lxml (inlcudes a bug fix, see below)

• python-azure-agent received the following fixes: * Use the proper option to force btrfs to overwrite a file system on the resource disk if one already exists (bsc#1227711) * Set Provisioning.Agent parameter to 'cloud-init' in SLE Micro 5.5 and newer (bsc#1227106) * Do not package `waagent2.0` in Python 3 builds * Do not require `wicked` in non-SUSE build environments * Apply python3 interpreter patch in non SLE build environments (bcs#1227067)

• python3-lxml also received the following fix: * Fixed compatibility with system libexpat in tests (bnc#1222075)

This update for python-azure-agent fixes the following issue:

• The agent service gets restarted in post but may fail due to a missing config file. config files were split into their own package previously. When we detect that we have to restore a config file we also need to restart the agent again (bsc#1227600).

SUSE-CU-2024:3365-1

This update for shadow fixes the following issues:

• CVE-2013-4235: Fixed a race condition when copying and removing directory trees (bsc#916845).

This update for open-vm-tools fixes the following issues:

• There are no new features in the open-vm-tools release (bsc#1227181). This is primarily a maintenance release that addresses a few critical problems, including: - A Github pull request and associated issue has been handled. Please see the Resolved Issues section of the Release Notes - A number of issues flagged by Coverity and ShellCheck have been addressed - A vmtoolsd process hang related to nested logging from an RPC Channel error has been fixed

This update for wicked fixes the following issues:

• Update to version 0.6.76
• compat-suse: warn user and create missing parent config of infiniband children
• client: fix origin in loaded xml-config with obsolete port references but missing port interface config, causing a no-carrier of master (bsc#1226125)
• ipv6: fix setup on ipv6.disable=1 kernel cmdline (bsc#1225976)
• wireless: add frequency-list in station mode (jsc#PED-8715)
• client: fix crash while hierarchy traversing due to loop in e.g. systemd-nspawn containers (bsc#1226664)
• man: add supported bonding options to ifcfg-bonding(5) man page
• arputil: Document minimal interval for getopts
• man: (re)generate man pages from md sources
• client: warn on interface wait time reached
• compat-suse: fix dummy type detection from ifname to not cause conflicts with e.g. correct vlan config on dummy0.42 interfaces
• compat-suse: fix infiniband and infiniband child type detection from ifname

SUSE-CU-2024:3172-1

This update for python3 fixes the following issues:

• CVE-2023-52425: Fixed backport so it uses features sniffing, not just comparing version number (bsc#1219559).
• CVE-2024-0450: Fixed detecting the vulnerability of 'quoted-overlap' zipbomb (bsc#1221854).
• CVE-2024-4032: Rearranging definition of private v global IP. (bsc#1226448)
• CVE-2024-0397: Remove a memory race condition in ssl.SSLContext certificate store methods. (bsc#1226447)

This update for openscap provides the SCAP tooling for SLE Micro 5.1 and 5.2.
This includes shipping openscap dependencies libxmlsec1-1 and libxmlsec1-openssl for SLE Micro.

SUSE-CU-2024:3156-1

This update for oniguruma fixes the following issues:

• CVE-2019-13225: Fixed null-pointer dereference in match_at() in regexec.c (bsc#1141157).

SUSE-CU-2024:3098-1

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

• CVE-2021-47247: net/mlx5e: Fix use-after-free of encap entry in neigh update handler (bsc#1224865).
• CVE-2021-47311: net: qcom/emac: fix UAF in emac_remove (bsc#1225010).
• CVE-2021-47368: enetc: Fix illegal access when reading affinity_hint (bsc#1225161).
• CVE-2021-47372: net: macb: fix use after free on rmmod (bsc#1225184).
• CVE-2021-47379: blk-cgroup: fix UAF by grabbing blkcg lock before destroying blkg pd (bsc#1225203).
• CVE-2021-47571: staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() (bsc#1225518).
• CVE-2022-48760: USB: core: Fix hang in usb_kill_urb by adding memory barriers (bsc#1226712).
• CVE-2023-52707: sched/psi: Fix use-after-free in ep_remove_wait_queue() (bsc#1225109). polled (bsc#1202623).
• CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
• CVE-2023-52881: tcp: do not accept ACK of bytes we never sent (bsc#1225611).
• CVE-2024-26923: Fixed false-positive lockdep splat for spin_lock() in __unix_gc() (bsc#1223384).
• CVE-2024-35789: Check fast rx for non-4addr sta VLAN changes (bsc#1224749).
• CVE-2024-35861: Fixed potential UAF in cifs_signal_cifsd_for_reconnect() (bsc#1224766).
• CVE-2024-35862: Fixed potential UAF in smb2_is_network_name_deleted() (bsc#1224764).
• CVE-2024-35864: Fixed potential UAF in smb2_is_valid_lease_break() (bsc#1224765).
• CVE-2024-35950: drm/client: Fully protect modes with dev->mode_config.mutex (bsc#1224703).
• CVE-2024-36894: usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete (bsc#1225749).
• CVE-2024-36904: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() (bsc#1225732).
• CVE-2024-36940: pinctrl: core: delete incorrect free in pinctrl_enable() (bsc#1225840).
• CVE-2024-36964: fs/9p: only translate RWX permissions for plain 9P2000 (bsc#1225866).
• CVE-2024-38545: RDMA/hns: Fix UAF for cq async event (bsc#1226595)
• CVE-2024-38559: scsi: qedf: Ensure the copied buf is NUL terminated (bsc#1226758).
• CVE-2024-38560: scsi: bfa: Ensure the copied buf is NUL terminated (bsc#1226786).

• NFS: avoid infinite loop in pnfs_update_layout (bsc#1219633 bsc#1226226).
• ocfs2: adjust enabling place for la window (bsc#1219224).
• ocfs2: fix sparse warnings (bsc#1219224).
• ocfs2: improve write IO performance when fragmentation is high (bsc#1219224).
• ocfs2: speed up chain-list searching (bsc#1219224).
• psi: Fix uaf issue when psi trigger is destroyed while being
• x86/tsc: Trust initial offset in architectural TSC-adjust MSRs (bsc#1222015 bsc#1226962).

SUSE-CU-2024:3096-1

This update for libssh fixes the following issue:

• Fix regression parsing IPv6 addresses provided as hostname (bsc#1227396)

SUSE-CU-2024:3054-1

This update for krb5 fixes the following issues:

• CVE-2024-37370: Fixed confidential GSS krb5 wrap tokens with invalid fields were errouneously accepted (bsc#1227186).
• CVE-2024-37371: Fixed invalid memory read when processing message tokens with invalid length fields (bsc#1227187).

SUSE-CU-2024:2996-1

This update for scap-security-guide and openscap provides the SCAP tooling for SLE Micro 5.3, 5.4, 5.5.
This includes shipping openscap dependencies libxmlsec1-1 and libxmlsec1-openssl for SLE Micro.

SUSE-CU-2024:2975-1

This update for libxml2 fixes the following issues:

• CVE-2024-34459: Fixed buffer over-read in xmlHTMLPrintFileContext in xmllint.c (bsc#1224282).

SUSE-CU-2024:2964-1

This update for glib2 fixes the following issues:

• CVE-2024-34397: Fixed signal subscription unicast spoofing vulnerability (bsc#1224044).

SUSE-CU-2024:2950-1

This update for util-linux fixes the following issue:

• fix Xen virtualization type misidentification (bsc#1215918)

This update for wicked fixes the following issues:

• Fix VLANs/bonds randomly not coming up after reboot or wicked restart. [bsc#1218668]

SUSE-CU-2024:2940-1

This update for python-azure-agent fixes the following issue:

• Use the -Z option for mv and cp in the posttrans to properly handle SELinux context (bsc#1225946)

SUSE-CU-2024:2909-1

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:

• CVE-2021-47378: Destroy cm id before destroy qp to avoid use after free (bsc#1225201).
• CVE-2021-47496: Fix flipped sign in tls_err_abort() calls (bsc#1225354)
• CVE-2021-47402: Protect fl_walk() with rcu (bsc#1225301)
• CVE-2022-48673: kABI workarounds for struct smc_link (bsc#1223934).
• CVE-2023-52871: Handle a second device without data corruption (bsc#1225534)
• CVE-2024-26828: Fix underflow in parse_server_interfaces() (bsc#1223084).
• CVE-2021-47497: Fixed shift-out-of-bound (UBSAN) with byte size cells (bsc#1225355).
• CVE-2021-47500: Fixed trigger reference couting (bsc#1225360).
• CVE-2024-27413: Fix incorrect allocation size (bsc#1224438).
• CVE-2021-47383: Fiedx out-of-bound vmalloc access in imageblit (bsc#1225208).
• CVE-2021-47511: Fixed negative period/buffer sizes (bsc#1225411).
• CVE-2023-52840: Fix use after free in rmi_unregister_function() (bsc#1224928).
• CVE-2021-47261: Fix initializing CQ fragments buffer (bsc#1224954)
• CVE-2021-47254: Fix use-after-free in gfs2_glock_shrink_scan (bsc#1224888).
• CVE-2024-27398: Fixed use-after-free bugs caused by sco_sock_timeout (bsc#1224174).
• CVE-2024-26921: Preserve kabi for sk_buff (bsc#1223138).
• CVE-2023-52655: Check packet for fixup for true limit (bsc#1217169).
• CVE-2023-4244: Fixed a use-after-free in the nf_tables component, which could be exploited to achieve local privilege escalation (bsc#1215420).
• CVE-2023-4244: Fixed a use-after-free in the nf_tables component, which could be exploited to achieve local privilege escalation (bsc#1215420).
• CVE-2023-1829: Fixed a use-after-free vulnerability in the control index filter (tcindex) (bsc#1210335).
• CVE-2023-52686: Fix a null pointer in opal_event_init() (bsc#1065729).

• af_unix: annote lockless accesses to unix_tot_inflight & gc_in_progress (bsc#1223384).
• af_unix: Do not use atomic ops for unix_sk(sk)->inflight (bsc#1223384).
• af_unix: Replace BUG_ON() with WARN_ON_ONCE() (bsc#1223384).
• btrfs: do not start relocation until in progress drops are done (bsc#1222251).
• btrfs: do not start relocation until in progress drops are done (bsc#1222251).
• cifs: add missing spinlock around tcon refcount (bsc#1213476).
• cifs: avoid dup prefix path in dfs_get_automount_devname() (bsc#1213476).
• cifs: avoid race conditions with parallel reconnects (bsc#1213476).
• cifs: avoid re-lookups in dfs_cache_find() (bsc#1213476).
• cifs: avoid use of global locks for high contention data (bsc#1213476).
• cifs: check only tcon status on tcon related functions (bsc#1213476).
• cifs: do all necessary checks for credits within or before locking (bsc#1213476).
• cifs: do not block in dfs_cache_noreq_update_tgthint() (bsc#1213476).
• cifs: do not refresh cached referrals from unactive mounts (bsc#1213476).
• cifs: do not take exclusive lock for updating target hints (bsc#1213476).
• cifs: fix confusing debug message (bsc#1213476).
• cifs: fix missing unload_nls() in smb2_reconnect() (bsc#1213476).
• cifs: fix potential deadlock in cache_refresh_path() (bsc#1213476).
• cifs: fix refresh of cached referrals (bsc#1213476).
• cifs: fix return of uninitialized rc in dfs_cache_update_tgthint() (bsc#1213476).
• cifs: fix source pathname comparison of dfs supers (bsc#1213476).
• cifs: fix status checks in cifs_tree_connect (bsc#1213476).
• cifs: fix use-after-free bug in refresh_cache_worker() (bsc#1213476).
• cifs: get rid of dns resolve worker (bsc#1213476).
• cifs: get rid of mount options string parsing (bsc#1213476).
• cifs: handle cache lookup errors different than -ENOENT (bsc#1213476).
• cifs: ignore ipc reconnect failures during dfs failover (bsc#1213476).
• cifs: match even the scope id for ipv6 addresses (bsc#1213476).
• cifs: optimize reconnect of nested links (bsc#1213476).
• cifs: prevent data race in smb2_reconnect() (bsc#1213476).
• cifs: refresh root referrals (bsc#1213476).
• cifs: remove duplicate code in __refresh_tcon() (bsc#1213476).
• cifs: remove unused function (bsc#1213476).
• cifs: remove unused smb3_fs_context::mount_options (bsc#1213476).
• cifs: return DFS root session id in DebugData (bsc#1213476).
• cifs: reuse cifs_match_ipaddr for comparison of dstaddr too (bsc#1213476).
• cifs: set correct ipc status after initial tree connect (bsc#1213476).
• cifs: set correct status of tcon ipc when reconnecting (bsc#1213476).
• cifs: set correct tcon status after initial tree connect (bsc#1213476).
• cifs: set DFS root session in cifs_get_smb_ses() (bsc#1213476).
• cifs: set resolved ip in sockaddr (bsc#1213476).
• cifs: share dfs connections and supers (bsc#1213476).
• cifs: split out ses and tcon retrieval from mount_get_conns() (bsc#1213476).
• cifs: use fs_context for automounts (bsc#1213476).
• cifs: use origin fullpath for automounts (bsc#1213476).
• cifs: use tcon allocation functions even for dummy tcon (bsc#1213476).
• netfilter: nf_tables: defer gc run if previous batch is still pending (git-fixes).
• netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path (git-fixes).
• netfilter: nf_tables: fix kdoc warnings after gc rework (git-fixes).
• netfilter: nf_tables: fix memleak when more than 255 elements expired (git-fixes).
• netfilter: nf_tables: GC transaction race with abort path (git-fixes).
• netfilter: nf_tables: GC transaction race with netns dismantle (git-fixes).
• netfilter: nf_tables: mark newset as dead on transaction abort (git-fixes).
• netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout (git-fixes).
• netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure (git-fixes).
• netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path (git-fixes).
• netfilter: nf_tables: skip dead set elements in netlink dump (git-fixes).
• netfilter: nf_tables: use correct lock to protect gc_list (git-fixes).
• netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration (git-fixes).
• netfilter: nft_set_rbtree: Add missing expired checks (git-fixes).
• netfilter: nft_set_rbtree: bogus lookup/get on consecutive elements in named sets (git-fixes).
• netfilter: nft_set_rbtree: Detect partial overlap with start endpoint match (git-fixes).
• netfilter: nft_set_rbtree: Detect partial overlaps on insertion (git-fixes).
• netfilter: nft_set_rbtree: Do not account for expired elements on insertion (git-fixes).
• netfilter: nft_set_rbtree: Drop spurious condition for overlap detection on insertion (git-fixes).
• netfilter: nft_set_rbtree: fix null deref on element insertion (git-fixes).
• netfilter: nft_set_rbtree: fix overlap expiration walk (git-fixes).
• netfilter: nft_set_rbtree: Handle outcomes of tree rotations in overlap detection (git-fixes).
• netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start() (git-fixes).
• netfilter: nft_set_rbtree: overlap detection with element re-addition after deletion (git-fixes).
• netfilter: nft_set_rbtree: skip elements in transaction from garbage collection (git-fixes).
• netfilter: nft_set_rbtree: skip end interval element from gc (git-fixes).
• netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction (git-fixes).
• netfilter: nft_set_rbtree: Switch to node list walk for overlap detection (git-fixes).
• netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention (git-fixes).
• NFC: nxp: add NXP1002 (bsc#1185589).
• PCI: rpaphp: Add MODULE_DESCRIPTION (bsc#1176869 ltc#188243).
• smb: client: fix dfs link mount against w2k8 (git-fixes).
• smb: client: fix null auth (bsc#1213476).
• smb: client: set correct id, uid and cruid for multiuser automounts (git-fixes).
• x86/xen: Drop USERGS_SYSRET64 paravirt call (git-fixes).

SUSE-CU-2024:2817-1

This update for libsolv, libzypp, zypper fixes the following issues:

• Improve updating of installed multiversion packages
• Fix decision introspection going into an endless loop in some cases
• Split libsolv-tools into libsolv-tools-base [jsc#PED-8153]
• Improve checks against corrupt rpm
• Fixed check for outdated repo metadata as non-root user (bsc#1222086)
• Add ZYPP_API for exported functions and switch to visibility=hidden (jsc#PED-8153)
• Dynamically resolve libproxy (jsc#PED-8153)
• Fix download from gpgkey URL (bsc#1223430)
• Delay zypp lock until command options are parsed (bsc#1223766)
• Unify message format

This update for gcc13 fixes the following issues:
Update to GCC 13.3 release

• Removed Fiji support from the GCN offload compiler as that is requiring Code Object version 3 which is no longer supported by llvm18.
• Avoid combine spending too much compile-time and memory doing nothing on s390x. [bsc#1188441]
• Make requirement to lld version specific to avoid requiring the meta-package.

SUSE-CU-2024:2756-1

This update for openssl-1_1 fixes the following issues:

• CVE-2024-4741: Fixed a use-after-free with SSL_free_buffers. (bsc#1225551)

SUSE-CU-2024:2657-1

This update for curl fixes the following issues:

• CVE-2023-27534: Properly resolve ~ when used in a SFTP path. (bsc#1219273)

SUSE-CU-2024:2492-1

This update for glibc fixes the following issues:

• CVE-2024-33599: Fixed a stack-based buffer overflow in netgroup cache in nscd (bsc#1223423)
• CVE-2024-33600: Avoid null pointer crashes after notfound response in nscd (bsc#1223424)
• CVE-2024-33600: Do not send missing not-found response in addgetnetgrentX in nscd (bsc#1223424)
• CVE-2024-33601, CVE-2024-33602: Fixed use of two buffers in addgetnetgrentX ( bsc#1223425)
• CVE-2024-33602: Use time_t for return type of addgetnetgrentX (bsc#1223425)

• Avoid creating userspace live patching prologue for _start routine (bsc#1221940)

SUSE-CU-2024:2393-1

This update for aaa_base fixes the following issues:

• Fix the typo to set JAVA_BINDIR in the csh variant of the alljava profile script (bsc#1221361)

SUSE-CU-2024:2392-1

This update for wicked fixes the following issues:

• client: fix ifreload to pull UP ports/links again when the config of their master/lower changed (bsc#1224100)
• Update to version 0.6.75: - cleanup: fix ni_fsm_state_t enum-int-mismatch warnings - cleanup: fix overflow warnings in a socket testcase on i586 - ifcheck: report new and deleted configs as changed (bsc#1218926) - man: improve ARP configuration options in the wicked-config.5 - bond: add ports when master is UP to avoid port MTU revert (bsc#1219108) - cleanup: fix interface dependencies and shutdown order (bsc#1205604) - Remove port arrays from bond,team,bridge,ovs-bridge (redundant) and consistently use config and state info attached to the port interface as in rtnetlink(7). - Cleanup ifcfg parsing, schema configuration and service properties - Migrate ports in xml config and policies already applied in nanny - Remove 'missed config' generation from finite state machine, which is completed while parsing the config or while xml config migration. - Issue a warning when 'lower' interface (e.g. eth0) config is missed while parsing config depending on it (e.g. eth0.42 vlan). - Resolve ovs master to the effective bridge in config and wickedd - Implement netif-check-state require checks using system relations from wickedd/kernel instead of config relations for ifdown and add linkDown and deleteDevice checks to all master and lower references. - Add a `wicked --dry-run …` option to show the system/config interface hierarchies as notice with +/- marked interfaces to setup and/or shutdown.

SUSE-CU-2024:2257-1

This update for perl fixes the following issues:
Security issues fixed:

• CVE-2018-6913: Fixed space calculation issues in pp_pack.c (bsc#1082216)
• CVE-2018-6798: Fixed heap buffer overflow in regexec.c (bsc#1082233)

• make Net::FTP work with TLS 1.3 (bsc#1213638)

SUSE-CU-2024:2170-1

This update for coreutils fixes the following issues:

• ls: avoid triggering automounts (bsc#1221632)

This update for open-vm-tools fixes the following issues:

• Remove protobuf less than v22 dependency from spec file (bsc#1217478)
• Use for updating open-vm-tools to new version (bsc#1222089)
• There are no new features in the current open-vm-tools release This is primarily a maintenance release that addresses a few critical problems
• Use %patch -P N instead of deprecated %patchN
• Own %{_modulesloaddir}: used to be present via udev-mini - kmod - suse-module-tools dependency before
• Fix outdated libxmlsec1 dependency version Updates to open-vm-tools for SLES 12 SP4 and SP5 are now being built againt against libxmlsec1-1-1.2.37. Update the spec file to now require libxmlsec1-openssl1 v1.2.37 or above. (bsc#1217796)
• limit to protobuf less than v22 for now until build failures have been fixed pam-vmtoolsd patch as instructed by vmware (bsc#1171003). This should fix both (bsc#1171003) and (bsc#1172693)
• Update vmtoolsd.service to support cloud-init customization by default (bsc#994598)
• Enable vgauth for openSUSE Leap 42.1 (bsc#952645)
• Extensive rewrite of the spec file
• rename vmware-KMP to vmware-guest-KMP for easier identification

SUSE-CU-2024:2038-1

This update for openssl-1_1 fixes the following issues:

• CVE-2024-2511: Fixed unconstrained session cache growth in TLSv1.3 (bsc#1222548).

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

• CVE-2024-26840: Fixed a memory leak in cachefiles_add_cache() (bsc#1222976).
• CVE-2021-47113: Abort btrfs rename_exchange if we fail to insert the second ref (bsc#1221543).
• CVE-2021-47131: Fixed a use-after-free after the TLS device goes down and up (bsc#1221545).
• CVE-2024-26852: Fixed net/ipv6 to avoid possible UAF in ip6_route_mpath_notify() (bsc#1223057).
• CVE-2021-46955: Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets (bsc#1220513).
• CVE-2024-26862: Fixed packet annotate data-races around ignore_outgoing (bsc#1223111).
• CVE-2024-0639: Fixed a denial-of-service vulnerability due to a deadlock found in sctp_auto_asconf_init in net/sctp/socket.c (bsc#1218917).
• CVE-2024-27043: Fixed a use-after-free in edia/dvbdev in different places (bsc#1223824).
• CVE-2022-48631: Fixed a bug in ext4, when parsing extents where eh_entries == 0 and eh_depth > 0 (bsc#1223475).
• CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1219169).
• CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223513).
• CVE-2024-26906: Disallowed vsyscall page read for copy_from_kernel_nofault() (bsc#1223202).
• CVE-2024-26816: Fixed relocations in .notes section when building with CONFIG_XEN_PV=y by ignoring them (bsc#1222624).
• CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221299).
• CVE-2024-26689: Fixed a use-after-free in encode_cap_msg() (bsc#1222503).
• CVE-2021-47041: Don't set sk_user_data without write_lock (bsc#1220755).
• CVE-2021-47074: Fixed memory leak in nvme_loop_create_ctrl() (bsc#1220854).
• CVE-2024-26744: Fixed null pointer dereference in srpt_service_guid parameter in rdma/srpt (bsc#1222449).

• dm rq: do not queue request to blk-mq during DM suspend (bsc#1221113).
• dm: rearrange core declarations for extended use from dm-zone.c (bsc#1221113).
• net/tls: Remove the context from the list in tls_device_down (bsc#1221545).
• tls: Fix context leak on tls_device_down (bsc#1221545).

SUSE-CU-2024:1984-1

This update for avahi fixes the following issues:

• CVE-2023-38472: Fix reachable assertion in avahi_rdata_parse() (bsc#1216853).

SUSE-CU-2024:1926-1

This update for less fixes the following issues:

• CVE-2024-32487: Fixed mishandling of \n character in paths when LESSOPEN is set leads to OS command execution. (bsc#1222849)

SUSE-CU-2024:1904-1

The SUSE Linux Enterprise 15 SP3 LTSS kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

• CVE-2020-36781: Fixed reference leak when pm_runtime_get_sync fails in i2c/imx (bsc#1220557).
• CVE-2021-46911: Fixed kernel panic (bsc#1220400).
• CVE-2021-46914: Fixed unbalanced device enable/disable in suspend/resume in pci_disable_device() (bsc#1220465).
• CVE-2021-46917: Fixed wq cleanup of WQCFG registers in idxd (bsc#1220432).
• CVE-2021-46918: Fixed not clearing MSIX permission entry on shutdown in idxd (bsc#1220429).
• CVE-2021-46919: Fixed wq size store permission state in idxd (bsc#1220414).
• CVE-2021-46920: Fixed clobbering of SWERR overflow bit on writeback (bsc#1220426).
• CVE-2021-46922: Fixed TPM reservation for seal/unseal (bsc#1220475).
• CVE-2021-46930: Fixed usb/mtu3 list_head check warning (bsc#1220484).
• CVE-2021-46931: Fixed wrong type casting in mlx5e_tx_reporter_dump_sq() (bsc#1220486).
• CVE-2021-46933: Fixed possible underflow in ffs_data_clear() (bsc#1220487).
• CVE-2021-46956: Fixed memory leak in virtio_fs_probe() (bsc#1220516).
• CVE-2021-46959: Fixed use-after-free with devm_spi_alloc_* (bsc#1220734).
• CVE-2021-46961: Fixed spurious interrup handling (bsc#1220529).
• CVE-2021-46971: Fixed unconditional security_locked_down() call (bsc#1220697).
• CVE-2021-46976: Fixed crash in auto_retire in drm/i915 (bsc#1220621).
• CVE-2021-46980: Fixed not retrieving all the PDOs instead of just the first 4 in usb/typec/ucsi (bsc#1220663).
• CVE-2021-46983: Fixed NULL pointer dereference when SEND is completed with error (bsc#1220639).
• CVE-2021-46988: Fixed release page in error path to avoid BUG_ON (bsc#1220706).
• CVE-2021-47001: Fixed cwnd update ordering in xprtrdma (bsc#1220670).
• CVE-2021-47003: Fixed potential null dereference on pointer status in idxd_cmd_exec (bsc#1220677).
• CVE-2021-47009: Fixed memory leak on object td (bsc#1220733).
• CVE-2021-47014: Fixed wild memory access when clearing fragments in net/sched/act_ct (bsc#1220630).
• CVE-2021-47017: Fixed use after free in ath10k_htc_send_bundle (bsc#1220678).
• CVE-2021-47026: Fixed not destroying sysfs after removing session from active list (bsc#1220685).
• CVE-2021-47035: Fixed wrong WO permissions on second-level paging entries in iommu/vt-d (bsc#1220688).
• CVE-2021-47038: Fixed deadlock between hci_dev->lock and socket lock in bluetooth (bsc#1220753).
• CVE-2021-47044: Fixed shift-out-of-bounds in load_balance() in sched/fair (bsc#1220759).
• CVE-2021-47046: Fixed off by one in hdmi_14_process_transaction() (bsc#1220758).
• CVE-2021-47087: Fixed incorrect page free bug in tee/optee (bsc#1220954).
• CVE-2021-47095: Fixed missing initialization in ipmi/ssif (bsc#1220979).
• CVE-2021-47097: Fixed stack out of bound access in elantech_change_report_id() (bsc#1220982).
• CVE-2021-47100: Fixed UAF when uninstall in ipmi (bsc#1220985).
• CVE-2021-47101: Fixed uninit-value in asix_mdio_read() (bsc#1220987).
• CVE-2021-47109: Fixed NUD_NOARP entries to be forced GCed (bsc#1221534).
• CVE-2021-47130: Fixed freeing unallocated p2pmem in nvmet (bsc#1221552).
• CVE-2021-47137: Fixed memory corruption in RX ring in net/lantiq (bsc#1221932).
• CVE-2021-47150: Fixed the potential memory leak in fec_enet_init() (bsc#1221973).
• CVE-2021-47160: Fixed VLAN traffic leaks in dsa: mt7530 (bsc#1221974).
• CVE-2021-47164: Fixed null pointer dereference accessing lag dev in net/mlx5e (bsc#1221978).
• CVE-2021-47174: Fixed missing check in irq_fpu_usable() (bsc#1221990).
• CVE-2021-47175: Fixed OOB access in net/sched/fq_pie (bsc#1222003).
• CVE-2021-47181: Fixed a null pointer dereference caused by calling platform_get_resource() (bsc#1222660).
• CVE-2021-47183: Fixed a null pointer dereference during link down processing in scsi lpfc (bsc#1192145, bsc#1222664).
• CVE-2021-47185: Fixed a softlockup issue in flush_to_ldisc in tty tty_buffer (bsc#1222669).
• CVE-2021-47189: Fixed denial of service due to memory ordering issues between normal and ordered work functions in btrfs (bsc#1222706).
• CVE-2023-0160: Fixed deadlock flaw in BPF that could allow a local user to potentially crash the system (bsc#1209657).
• CVE-2023-28746: Fixed Register File Data Sampling (bsc#1213456).
• CVE-2023-52469: Fixed a use-after-free in kv_parse_power_table (bsc#1220411).
• CVE-2023-52470: Fixed null-ptr-deref in radeon_crtc_init() (bsc#1220413).
• CVE-2023-52474: Fixed a vulnerability with non-PAGE_SIZE-end multi-iovec user SDMA requests (bsc#1220445).
• CVE-2023-52476: Fixed possible unhandled page fault via perf sampling NMI during vsyscall (bsc#1220703).
• CVE-2023-52492: Fixed a null-pointer-dereference in channel unregistration function __dma_async_device_channel_register() (bsc#1221276).
• CVE-2023-52500: Fixed information leaking when processing OPC_INB_SET_CONTROLLER_CONFIG command (bsc#1220883).
• CVE-2023-52508: Fixed null pointer dereference in nvme_fc_io_getuuid() (bsc#1221015).
• CVE-2023-52575: Fixed SBPB enablement for spec_rstack_overflow=off (bsc#1220871).
• CVE-2023-52583: Fixed deadlock or deadcode of misusing dget() inside ceph (bsc#1221058).
• CVE-2023-52607: Fixed a null-pointer-dereference in pgtable_cache_add kasprintf() (bsc#1221061).
• CVE-2023-52628: Fixed 4-byte stack OOB write in nftables (bsc#1222117).
• CVE-2023-6270: Fixed a use-after-free issue in aoecmd_cfg_pkts (bsc#1218562).
• CVE-2023-6531: Fixed a use-after-free flaw due to a race problem in the unix garbage collector's deletion of SKB races with unix_stream_read_generic()on the socket that the SKB is queued on (bsc#1218447).
• CVE-2023-7042: Fixed a null-pointer-dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (bsc#1218336).
• CVE-2023-7192: Fixed a memory leak problem in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c (bsc#1218479).
• CVE-2024-22099: Fixed a null-pointer-dereference in rfcomm_check_security (bsc#1219170).
• CVE-2024-26600: Fixed NULL pointer dereference for SRP in phy-omap-usb2 (bsc#1220340).
• CVE-2024-26614: Fixed the initialization of accept_queue's spinlocks (bsc#1221293).
• CVE-2024-26642: Fixed the set of anonymous timeout flag in netfilter nf_tables (bsc#1221830).
• CVE-2024-26704: Fixed a double-free of blocks due to wrong extents moved_len in ext4 (bsc#1222422).
• CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585).

• fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super (bsc#1219264).
• tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc (bsc#1222619).
• group-source-files.pl: Quote filenames (boo#1221077).
• kernel-binary: certs: Avoid trailing space
• mm: fix gup_pud_range (bsc#1220824).

SUSE-CU-2024:1903-1

This update for aaa_base fixes the following issues:

• home and end button not working from ssh client (bsc#1221407)
• use autosetup in prep stage of specfile
• drop the stderr redirection for csh (bsc#1221361)
• drop sysctl.d/50-default-s390.conf (bsc#1211721)
• make sure the script does not exit with 1 if a file with content is found (bsc#1222547)

SUSE-CU-2024:1790-1

This update for vim fixes the following issues:

• Fix segmentation fault after updating to version 9.1.0111-150500.20.9.1 (bsc#1220763)

SUSE-CU-2024:1740-1

This update for libzypp, zypper fixes the following issues:

• Fix creation of sibling cache dirs with too restrictive mode (bsc#1222398)
• Don't try to refresh volatile media as long as raw metadata are present (bsc#1223094)
• Update RepoStatus fromCookieFile according to the files mtime (bsc#1222086)
• TmpFile: Don't call chmod if makeSibling failed
• Do not try to refresh repo metadata as non-root user (bsc#1222086)
• man: Explain how to protect orphaned packages by collecting them in a plaindir repo
• packages: Add --autoinstalled and --userinstalled options to list them
• Don't print 'reboot required' message if download-only or dry-run
• Resepect zypper.conf option `showAlias` search commands (bsc#1221963)
• dup: New option --remove-orphaned to remove all orphaned packages in dup (bsc#1221525)

This update for systemd-presets-common-SUSE fixes the following issues:

• Split hcn-init.service to hcn-init-NetworkManager and hcn-init-wicked (bsc#1200731 ltc#198485 https://github.com/ibm-power-utilities/powerpc-utils/pull/84)

SUSE-CU-2024:1694-1

This update for systemd-default-settings fixes the following issues:

• Disable pids controller limit under user instances (jsc#SLE-10123)
• Disable controllers by default (jsc#PED-2276)
• The usage of drop-ins is now the official way for configuring systemd and its various daemons on Factory/ALP, hence the early drop-ins SUSE specific 'feature' has been abandoned.
• User priority '26' for SLE-Micro
• Convert more drop-ins into early ones

SUSE-CU-2024:1693-1

This update for openssh fixes the following issues:

• Fix hostbased ssh login failing occasionally with 'signature unverified: incorrect signature' by fixing a typo in patch (bsc#1221123)
• Avoid closing IBM Z crypto devices nodes. (bsc#1218871)
• Allow usage of IBM Z crypto adapter cards in seccomp filters (bsc#1216474)

• Change the default value of UpdateHostKeys to Yes (unless VerifyHostKeyDNS is enabled).

This update for glibc fixes the following issues:

• iconv: ISO-2022-CN-EXT: fix out-of-bound writes when writing escape sequence (CVE-2024-2961, bsc#1222992)

SUSE-CU-2024:1584-1

This update for wicked fixes the following issues:

• Do not convert sec to msec twice (bsc#1222105)

This update for unixODBC, libtool and libssh2_org fixes the following issue:

• Ship 2 additional 32bit packages: unixODBC-32bit and libssh2-1-32bit for SLES (bsc#1221941).
• Fix an issue with Encrypt-then-MAC family. (bsc#1221622)

SUSE-CU-2024:1540-1

This update for python-azure-agent fixes the following issues:

• Keep the existing config file (bsc#1222620)
• Do not force wicked dependency for networking, allow NM in SLE Micro 5.5 and for ALP based products

SUSE-CU-2024:1532-1

This update for python3 fixes the following issue:

• Fix syslog making default 'ident' from sys.argv (bsc#1222109)

SUSE-CU-2024:1531-1

This update for gcc13 fixes the following issues:

• Fix unwinding for JIT code. [bsc#1221239]
• Revert libgccjit dependency change. [bsc#1220724]
• Remove crypt and crypt_r interceptors. The crypt API change in SLE15 SP3 breaks them. [bsc#1219520]
• Add support for -fmin-function-alignment. [bsc#1214934]
• Use %{_target_cpu} to determine host and build.
• Fix for building TVM. [bsc#1218492]
• Add cross-X-newlib-devel requires to newlib cross compilers. [bsc#1219031]
• Package m2rte.so plugin in the gcc13-m2 sub-package rather than in gcc13-devel. [bsc#1210959]
• Require libstdc++6-devel-gcc13 from gcc13-m2 as m2 programs are linked against libstdc++6.
• Fixed building mariadb on i686. [bsc#1217667]
• Avoid update-alternatives dependency for accelerator crosses.
• Package tool links to llvm in cross-amdgcn-gcc13 rather than in cross-amdgcn-newlib13-devel since that also has the dependence.
• Depend on llvmVER instead of llvm with VER equal to %product_libs_llvm_ver where available and adjust tool discovery accordingly. This should also properly trigger re-builds when the patchlevel version of llvmVER changes, possibly changing the binary names we link to. [bsc#1217450]

SUSE-CU-2024:1530-1

This update for libzypp, zypper, PackageKit fixes the following issues:

• Fixup New VendorSupportOption flag VendorSupportSuperseded (jsc#OBS-301, jsc#PED-8014)
• CVE-2024-0217: Check that Finished signal is emitted at most once (bsc#1218544)
• Add resolver option 'removeOrphaned' for distupgrade (bsc#1221525)
• New VendorSupportOption flag VendorSupportSuperseded (jsc#OBS-301, jsc#PED-8014)
• Add default stripe minimum
• Don't expose std::optional where YAST/PK explicitly use c++11.
• Digest: Avoid using the deprecated OPENSSL_config
• version 17.32.0
• ProblemSolution::skipsPatchesOnly overload to handout the patches
• Show active dry-run/download-only at the commit propmpt
• Add --skip-not-applicable-patches option
• Fix printing detailed solver problem description
• Fix bash-completion to work with right adjusted numbers in the 1st column too
• Set libzypp shutdown request signal on Ctrl+C
• In the detailed view show all baseurls not just the first one (bsc#1218171)

This update for glibc fixes the following issues:

• duplocale: protect use of global locale (bsc#1220441, BZ #23970)

SUSE-CU-2024:1390-1

This update for util-linux fixes the following issues:

• CVE-2024-28085: Properly neutralize escape sequences in wall. (bsc#1221831)

This update for python-azure-agent contains the following fixes:

• Recognise SLE-Micro as a SLE based distro.

• Create sub-packages for the config (jsc#PED-7869) + Remove config manipulation from image building + Set up a config for SLE-Micro + Makes deafult upstream config available

• Update to 2.9.1.1 (bsc#1217301, bsc#1217302) + Update unittest.mock + Download certificates when goal state source is fast track #2761 + Increase the max number of extension events by 20% #2785 + Remove version suffix from extension slice #2782 + Support int type for eventPid and eventTid fields #2786 + Improve log for swap counter not found #2789 + Remove cgroup files during deprovisioning #2790 + Log VM architecture in heartbeat telemetry for arm64 adoption monitoring #2818 + Enforce memory usage for agent #2671 + Use common download logic for agent downloads #2682 + Implement Fedora distro #2642 + Report message in handler heartbeat #2688 + Remove dependency on pathlib from makepkg #2717 + Do not fetch extensions goal state in log collector #2713 + Update log collector unit file to remove memory limit #2757 + Fix bug in get_dhcp_pid (CoreOS) #2784 + Fetch full distro version for mariner #2773

• Clean up conditions in spec file: + There is no maintained distro > 1315 (SLE12) AND < 1500 (SLE15). Only openSUSE 13.2 and 13.3 lived in that space, but they are clearly not the target of this spec file. + if 0%{?Suse_version} && 0{?suse_version} > 1315: no need to first validate suse_version being defined: whenever it is > 1315, must be defined.

• Add patch to use unittest.mock first, falling back to mock if required.
• Tighten Requires against python3-mock.

This update for less fixes the following issues:

• CVE-2022-48624: Fixed LESSCLOSE handling in less that does not quote shell metacharacters (bsc#1219901).

SUSE-CU-2024:1292-1

This update for avahi fixes the following issues:

• CVE-2023-38471: Fixed reachable assertion in dbus_set_host_name (bsc#1216594).
• CVE-2023-38469: Fixed reachable assertions in avahi (bsc#1216598).

This update for curl fixes the following issues:

• CVE-2024-2004: Fix the uUsage of disabled protocol logic. (bsc#1221665)
• CVE-2024-2398: Fix HTTP/2 push headers memory-leak. (bsc#1221667)

This update for wicked fixes the following issues:

• Fix fallback-lease drop in addrconf (bsc#1220996)
• Use upstream `nvme nbft show` (bsc#1221358)
• Hide secrets in debug log (bsc#1221194)

This update for ncurses fixes the following issues:

• CVE-2023-45918: Fixed NULL pointer dereference via corrupted xterm-256color file (bsc#1220061).

This update for nghttp2 fixes the following issues:

• CVE-2024-28182: Fixed denial of service via http/2 continuation frames (bsc#1221399)

SUSE-CU-2024:1207-1

This update for sed fixes the following issues:

• 'sed -i' now creates temporary files with correct umask (bsc#1221218)

SUSE-CU-2024:1206-1

This update for krb5 fixes the following issues:

• CVE-2024-26458: Fixed memory leak at /krb5/src/lib/rpc/pmap_rmt.c (bsc#1220770).
• CVE-2024-26461: Fixed memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c (bsc#1220771).

SUSE-CU-2024:1099-1

This update for pam-config fixes the following issues:

• Fix pam_gnome_keyring module for AUTH (bsc#1219767)

SUSE-CU-2024:946-1

This update for wicked fixes the following issues:

• ifreload: VLAN changes require device deletion (bsc#1218927)
• ifcheck: fix config changed check (bsc#1218926)
• client: fix exit code for no-carrier status (bsc#1219265)
• dhcp6: omit the SO_REUSEPORT option (bsc#1215692)
• duid: fix comment for v6time
• rtnl: fix peer address parsing for non ptp-interfaces
• system-updater: parse updater format from XML configuration to ensure install calls can run

This update for python3 fixes the following issues:

• CVE-2023-6597: Fixed symlink bug in cleanup of tempfile.TemporaryDirectory (bsc#1219666).
• CVE-2022-48566: Make compare_digest more constant-time (bsc#1214691).

SUSE-CU-2024:939-1

This update for qrencode fixes the following issues:

• update to 4.1.1 (jsc#PED-7296): * Some minor bugs in Micro QR Code generation have been fixed. * The data capacity calculations are now correct. These bugs probably did not affect the Micro QR Code generation.

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:

• CVE-2023-28746: Fixed Register File Data Sampling (bsc#1213456).
• CVE-2023-52502: Fixed a race condition in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() (bsc#1220831).
• CVE-2024-26589: Fixed out of bounds read due to variable offset alu on PTR_TO_FLOW_KEYS (bsc#1220255).
• CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187).
• CVE-2023-52340: Fixed ICMPv6 “Packet Too Big” packets force a DoS of the Linux kernel by forcing 100% CPU (bsc#1219295).
• CVE-2024-0607: Fixed 64-bit load issue in nft_byteorder_eval() (bsc#1218915).
• CVE-2023-6817: Fixed use-after-free in nft_pipapo_walk (bsc#1218195).
• CVE-2024-26622: Fixed UAF write bug in tomoyo_write_control() (bsc#1220825).
• CVE-2023-52451: Fixed access beyond end of drmem array (bsc#1220250).
• CVE-2021-46932: Fixed missing work initialization before device registration (bsc#1220444)
• CVE-2023-52463: Fixed null pointer dereference in efivarfs (bsc#1220328).
• CVE-2023-52449: Fixed gluebi NULL pointer dereference caused by ftl notifier (bsc#1220238).
• CVE-2023-52475: Fixed use-after-free in powermate_config_complete (bsc#1220649)
• CVE-2023-52478: Fixed kernel crash on receiver USB disconnect (bsc#1220796)
• CVE-2021-46915: Fixed a bug to avoid possible divide error in nft_limit_init (bsc#1220436).
• CVE-2021-46924: Fixed fix memory leak in device probe and remove (bsc#1220459)
• CVE-2019-25162: Fixed a potential use after free (bsc#1220409).
• CVE-2020-36784: Fixed reference leak when pm_runtime_get_sync fails (bsc#1220570).
• CVE-2023-52445: Fixed use after free on context disconnection (bsc#1220241).
• CVE-2023-46343: Fixed a NULL pointer dereference in send_acknowledge() (CVE-2023-46343).
• CVE-2023-52439: Fixed use-after-free in uio_open (bsc#1220140).
• CVE-2023-52443: Fixed crash when parsed profile name is empty (bsc#1220240).
• CVE-2024-26602: Fixed overall slowdowns with sys_membarrier (bsc1220398).
• CVE-2024-26593: Fixed block process call transactions (bsc#1220009).
• CVE-2021-47013: Fixed a use after free in emac_mac_tx_buf_send (bsc#1220641).
• CVE-2024-26586: Fixed stack corruption (bsc#1220243).
• CVE-2024-26595: Fixed NULL pointer dereference in error path (bsc#1220344).
• CVE-2023-52448: Fixed kernel NULL pointer dereference in gfs2_rgrp_dump (bsc#1220253).
• CVE-2024-1151: Fixed unlimited number of recursions from action sets (bsc#1219835).
• CVE-2024-23849: Fixed array-index-out-of-bounds in rds_cmsg_recv (bsc#1219127).
• CVE-2024-0340: Fixed information disclosure in vhost/vhost.c:vhost_new_msg() (bsc#1218689).
• CVE-2023-51042: Fixed use-after-free in amdgpu_cs_wait_all_fences in drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c (bsc#1219128).
• CVE-2021-47078: Fixed a bug by clearing all QP fields if creation failed (bsc#1220863)
• CVE-2021-47076: Fixed a bug by returning CQE error if invalid lkey was supplied (bsc#1220860)
• CVE-2023-52605: Fixed a NULL pointer dereference check (bsc#1221039)
• CVE-2023-52569: Fixed a bug in btrfs by remoning BUG() after failure to insert delayed dir index item (bsc#1220918).
• CVE-2023-52482: Fixex a bug by adding SRSO mitigation for Hygon processors (bsc#1220735).
• CVE-2023-52597: Fixed a setting of fpc register in KVM (bsc#1221040).
• CVE-2022-48627: Fixed a memory overlapping when deleting chars in the buffer (bsc#1220845).
• CVE-2023-52574: Fixed a bug by hiding new member header_ops (bsc#1220870).
• CVE-2021-46934: Fixed a bug by validating user data in compat ioctl (bsc#1220469).
• CVE-2023-35827: Fixed a use-after-free issue in ravb_tx_timeout_work() (bsc#1212514).
• CVE-2023-52532: Fixed a bug in TX CQE error handling (bsc#1220932).
• CVE-2023-52530: Fixed a potential key use-after-free in wifi mac80211 (bsc#1220930).
• CVE-2023-52531: Fixed a memory corruption issue in iwlwifi (bsc#1220931).
• CVE-2021-47083: Fixed a global-out-of-bounds issue in mediatek: (bsc#1220917).
• CVE-2024-26607: Fixed a probing race issue in sii902x: (bsc#1220736).
• CVE-2021-47005: Fixed a NULL pointer dereference for ->get_features() (bsc#1220660).
• CVE-2021-47060: Fixed a bug in KVM by stop looking for coalesced MMIO zones if the bus is destroyed (bsc#1220742).
• CVE-2021-47012: Fixed a use after free in siw_alloc_mr (bsc#1220627).
• CVE-2021-46989: Fixed a bug by preventing corruption in shrinking truncate in hfsplus (bsc#1220737).
• CVE-2021-47061: Fixed a bug in KVM by destroy I/O bus devices on unregister failure _after_ sync'ing SRCU (bsc#1220745).

• EDAC/thunderx: Fix possible out-of-bounds string access (bsc#1220330)
• ext4: fix deadlock due to mbcache entry corruption (bsc#1207653 bsc#1219915).
• ibmvfc: make 'max_sectors' a module option (bsc#1216223).
• KVM: Destroy target device if coalesced MMIO unregistration fails (git-fixes).
• KVM: mmio: Fix use-after-free Read in kvm_vm_ioctl_unregister_coalesced_mmio (git-fixes).
• KVM: VMX: Move VERW closer to VMentry for MDS mitigation (git-fixes).
• KVM: VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH (git-fixes).
• KVM: x86: add support for CPUID leaf 0x80000021 (git-fixes).
• KVM: x86: Move open-coded CPUID leaf 0x80000021 EAX bit propagation code (git-fixes).
• KVM: x86: synthesize CPUID leaf 0x80000021h if useful (git-fixes).
• KVM: x86: work around QEMU issue with synthetic CPUID leaves (git-fixes).
• mbcache: Fixup kABI of mb_cache_entry (bsc#1207653 bsc#1219915).
• scsi: Update max_hw_sectors on rescan (bsc#1216223).
• x86/asm: Add _ASM_RIP() macro for x86-64 (%rip) suffix (git-fixes).
• x86/bugs: Add asm helpers for executing VERW (git-fixes).
• x86/bugs: Use ALTERNATIVE() instead of mds_user_clear static key (git-fixes). Also add the removed mds_user_clear symbol to kABI severities as it is exposed just for KVM module and is generally a core kernel component so removing it is low risk.
• x86/cpu, kvm: Move X86_FEATURE_LFENCE_RDTSC to its native leaf (git-fixes).
• x86/entry_32: Add VERW just before userspace transition (git-fixes).
• x86/entry_64: Add VERW just before userspace transition (git-fixes).

This update for aaa_base fixes the following issues:

• Silence the output in the case of broken symlinks (bsc#1218232)

This update for glibc fixes the following issues:
Security issues fixed:

• qsort: harden handling of degenerated / non transient compare function (bsc#1218866)

• getaddrinfo: translate ENOMEM to EAI_MEMORY (bsc#1217589, BZ #31163)
• aarch64: correct CFI in rawmemchr (bsc#1217445, BZ #31113)

This update for vim fixes the following issues:

• CVE-2023-48231: Fixed Use-After-Free in win_close() (bsc#1217316).
• CVE-2023-48232: Fixed Floating point Exception in adjust_plines_for_skipcol() (bsc#1217320).
• CVE-2023-48233: Fixed overflow with count for :s command (bsc#1217321).
• CVE-2023-48234: Fixed overflow in nv_z_get_count (bsc#1217324).
• CVE-2023-48235: Fixed overflow in ex address parsing (bsc#1217326).
• CVE-2023-48236: Fixed overflow in get_number (bsc#1217329).
• CVE-2023-48237: Fixed overflow in shift_line (bsc#1217330).
• CVE-2023-48706: Fixed heap-use-after-free in ex_substitute (bsc#1217432).
• CVE-2024-22667: Fixed stack-based buffer overflow in did_set_langmap function in map.c (bsc#1219581).
• CVE-2023-4750: Fixed heap use-after-free in function bt_quickfix (bsc#1215005).

SUSE-CU-2024:920-1

This update for openssl-1_1 fixes the following issues:

• CVE-2024-0727: Denial of service when processing a maliciously formatted PKCS12 file (bsc#1219243).

This update for sudo fixes the following issues:

• CVE-2023-42465: Try to make sudo less vulnerable to ROWHAMMER attacks (bsc#1219026).

SUSE-CU-2024:878-1

This update for cpio fixes the following issues:

• CVE-2023-7207: Fixed path traversal vulnerability (bsc#1218571, bsc#1219238)

SUSE-CU-2024:872-1

This update for timezone fixes the following issues:

• Update to version 2024a
• Kazakhstan unifies on UTC+5
• Palestine springs forward a week later than previously predicted in 2024 and 2025
• Asia/Ho_Chi_Minh's 1955-07-01 transition occurred at 01:00 not 00:00
• From 1947 through 1949, Toronto's transitions occurred at 02:00 not 00:00
• In 1911 Miquelon adopted standard time on June 15, not May 15
• The FROM and TO columns of Rule lines can no longer be 'minimum'
• localtime no longer mishandle some timestamps
• strftime %s now uses tm_gmtoff if available
• Ittoqqortoormiit, Greenland changes time zones on 2024-03-31
• Vostok, Antarctica changed time zones on 2023-12-18
• Casey, Antarctica changed time zones five times since 2020
• Code and data fixes for Palestine timestamps starting in 2072
• A new data file zonenow.tab for timestamps starting now
• Much of Greenland changed its standard time from -03 to -02 on 2023-03-25
• localtime.c no longer mishandles TZif files that contain a single transition into a DST regime
• tzselect no longer creates temporary files
• tzselect no longer mishandles the following: * Spaces and most other special characters in BUGEMAIL, PACKAGE, TZDIR, and VERSION. * TZ strings when using mawk 1.4.3, which mishandles regular expressions of the form /X{2,}/ * ISO 6709 coordinates when using an awk that lacks the GNU extension of newlines in -v option-arguments * Non UTF-8 locales when using an iconv command that lacks the GNU //TRANSLIT extension * zic no longer mishandles data for Palestine after the year 2075

SUSE-CU-2024:727-1

This update for netcfg fixes the following issues:

• Add krb-prop entry (bsc#1211886)

SUSE-CU-2024:685-1

This update for openssh fixes the following issues:

• CVE-2023-51385: Limit the use of shell metacharacters in host- and user names to avoid command injection. (bsc#1218215)

SUSE-CU-2024:666-1

This update for python3 fixes the following issues:

• CVE-2023-27043: Fixed incorrectly parses e-mail addresses which contain a special character (bsc#1210638).

SUSE-CU-2024:623-1

This update for libssh fixes the following issues:
Update to version 0.9.8 (jsc#PED-7719):

• Fix CVE-2023-6004: Command injection using proxycommand (bsc#1218209)
• Fix CVE-2023-48795: Potential downgrade attack using strict kex (bsc#1218126)
• Fix CVE-2023-6918: Missing checks for return values of MD functions (bsc#1218186)
• Allow @ in usernames when parsing from URI composes

• Fix CVE-2023-1667: a NULL dereference during rekeying with algorithm guessing (bsc#1211188)
• Fix CVE-2023-2283: a possible authorization bypass in pki_verify_data_signature under low-memory conditions (bsc#1211190)
• Fix several memory leaks in GSSAPI handling code

• https://git.libssh.org/projects/libssh.git/tag/?h=libssh-0.9.6

• CVE-2020-16135: Avoid null pointer dereference in sftpserver (T232)
• Improve handling of library initialization (T222)
• Fix parsing of subsecond times in SFTP (T219)
• Make the documentation reproducible
• Remove deprecated API usage in OpenSSL
• Fix regression of ssh_channel_poll_timeout() returning SSH_AGAIN
• Define version in one place (T226)
• Prevent invalid free when using different C runtimes than OpenSSL (T229)
• Compatibility improvements to testsuite

• https://www.libssh.org/2020/04/09/libssh-0-9-4-and-libssh-0-8-9-security-release/
• Fix possible Denial of Service attack when using AES-CTR-ciphers CVE-2020-1730 (bsc#1168699)

• Fixed CVE-2019-14889 - SCP: Unsanitized location leads to command execution (bsc#1158095)
• SSH-01-003 Client: Missing NULL check leads to crash in erroneous state
• SSH-01-006 General: Various unchecked Null-derefs cause DOS
• SSH-01-007 PKI Gcrypt: Potential UAF/double free with RSA pubkeys
• SSH-01-010 SSH: Deprecated hash function in fingerprinting
• SSH-01-013 Conf-Parsing: Recursive wildcards in hostnames lead to DOS
• SSH-01-014 Conf-Parsing: Integer underflow leads to OOB array access
• SSH-01-001 State Machine: Initial machine states should be set explicitly
• SSH-01-002 Kex: Differently bound macros used to iterate same array
• SSH-01-005 Code-Quality: Integer sign confusion during assignments
• SSH-01-008 SCP: Protocol Injection via unescaped File Names
• SSH-01-009 SSH: Update documentation which RFCs are implemented
• SSH-01-012 PKI: Information leak via uninitialized stack buffer

• Fixed libssh-config.cmake
• Fixed issues with rsa algorithm negotiation (T191)
• Fixed detection of OpenSSL ed25519 support (T197)

• Added support for Ed25519 via OpenSSL
• Added support for X25519 via OpenSSL
• Added support for localuser in Match keyword
• Fixed Match keyword to be case sensitive
• Fixed compilation with LibreSSL
• Fixed error report of channel open (T75)
• Fixed sftp documentation (T137)
• Fixed known_hosts parsing (T156)
• Fixed build issue with MinGW (T157)
• Fixed build with gcc 9 (T164)
• Fixed deprecation issues (T165)
• Fixed known_hosts directory creation (T166)

• Split out configuration to separate package to not mess up the library packaging and coinstallation

• Added support for AES-GCM
• Added improved rekeying support
• Added performance improvements
• Disabled blowfish support by default
• Fixed several ssh config parsing issues
• Added support for DH Group Exchange KEX
• Added support for Encrypt-then-MAC mode
• Added support for parsing server side configuration file
• Added support for ECDSA/Ed25519 certificates
• Added FIPS 140-2 compatibility
• Improved known_hosts parsing
• Improved documentation
• Improved OpenSSL API usage for KEX, DH, and signatures

• Add libssh client and server config files

SUSE-CU-2024:567-1

The SUSE Linux Enterprise 15 SP3 LTSS kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

• CVE-2024-1086: Fixed a use-after-free vulnerability inside the nf_tables component that could have been exploited to achieve local privilege escalation (bsc#1219434).
• CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218730).
• CVE-2023-46838: Fixed an issue with Xen netback processing of zero-length transmit fragment (bsc#1218836).
• CVE-2021-33631: Fixed an integer overflow in ext4_write_inline_data_end() (bsc#1219412).
• CVE-2023-6535: Fixed a NULL pointer dereference in nvmet_tcp_execute_request (bsc#1217988).
• CVE-2023-6536: Fixed a NULL pointer dereference in __nvmet_req_complete (bsc#1217989).
• CVE-2023-6356: Fixed a NULL pointer dereference in nvmet_tcp_build_pdu_iovec (bsc#1217987).
• CVE-2023-47233: Fixed a use-after-free in the device unplugging (disconnect the USB by hotplug) code inside the brcm80211 component (bsc#1216702).
• CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215275).
• CVE-2023-51043: Fixed use-after-free during a race condition between a nonblocking atomic commit and a driver unload in drivers/gpu/drm/drm_atomic.c (bsc#1219120).
• CVE-2024-0775: Fixed use-after-free in __ext4_remount in fs/ext4/super.c that could allow a local user to cause an information leak problem while freeing the old quota file names before a potential failure (bsc#1219053).
• CVE-2024-0565: Fixed an out-of-bounds memory read flaw in receive_encrypted_standard in fs/smb/client/smb2ops.c (bsc#1218832).
• CVE-2023-6915: Fixed a NULL pointer dereference problem in ida_free in lib/idr.c (bsc#1218804).
• CVE-2023-6040: Fixed an out-of-bounds access vulnerability while creating a new netfilter table, lack of a safeguard against invalid nf_tables family (pf) values within `nf_tables_newtable` function (bsc#1218752).
• CVE-2023-51782: Fixed use-after-free in rose_ioctl in net/rose/af_rose.c because of a rose_accept race condition (bsc#1218757).

• Limit kernel-source build to architectures for which the kernel binary is built (bsc#1108281).
• x86/entry/ia32: Ensure s32 is sign extended to s64 (bsc#1193285).

This update for libsolv, libzypp fixes the following issues:

• build for multiple python versions [jsc#PED-6218]
• applydeltaprm: Create target directory if it does not exist (bsc#1219442)
• Fix problems with EINTR in ExternalDataSource::getline (bsc#1215698)
• CheckAccessDeleted: fix running_in_container detection (bsc#1218782)
• Detect CURLOPT_REDIR_PROTOCOLS_STR availability at runtime (bsc#1218831)

SUSE-CU-2024:559-1

This update for libxml2 fixes the following issues:

• CVE-2024-25062: Fixed use-after-free in XMLReader (bsc#1219576).

SUSE-CU-2024:444-1

This update for aaa_base fixes the following issues:

• Set JAVA_HOME correctly (bsc#1107342, bsc#1215434)

SUSE-CU-2024:358-1

This update for suse-module-tools fixes the following issues:

• Update to version 15.3.18
• Add symlink /boot/.vmlinuz.hmac (bsc#1217775)

SUSE-CU-2024:297-1

This update for util-linux fixes the following issues:

• Instead of explicitly truncating clocks.txt file, pad with whitespaces in the end of file. This is done to improve performance of libuuid on xfs. (bsc#1207987)

SUSE-CU-2024:296-1

This update for pam fixes the following issues:

• CVE-2024-22365: Fixed a local denial of service during PAM login due to a missing check during path manipulation (bsc#1218475).
• Check localtime_r() return value to fix crashing (bsc#1217000)

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

• CVE-2020-26555: Fixed Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B that may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN (bsc#1179610 bsc#1215237).
• CVE-2023-51779: Fixed a use-after-free because of a bt_sock_ioctl race condition in bt_sock_recvmsg (bsc#1218559).
• CVE-2023-6121: Fixed an out-of-bounds read vulnerability in the NVMe-oF/TCP subsystem that could lead to information leak (bsc#1217250).
• CVE-2023-6606: Fixed an out of bounds read in the SMB client when receiving a malformed length from a server (bsc#1217947).
• CVE-2023-6610: Fixed an out of bounds read in the SMB client when printing debug information (bsc#1217946).
• CVE-2023-6931: Fixed a heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component that could lead to local privilege escalation. (bsc#1218258).
• CVE-2023-6932: Fixed a use-after-free vulnerability in the Linux kernel's ipv4: igmp component that could lead to local privilege escalation (bsc#1218253).

• clocksource: Avoid accidental unstable marking of clocksources (bsc#1218105).
• clocksource: Suspend the watchdog temporarily when high read latency detected (bsc#1218105).
• doc/README.SUSE: Add how to update the config for module signing (jsc#PED-5021)
• doc/README.SUSE: Remove how to build modules using kernel-source (jsc#PED-5021)
• doc/README.SUSE: Simplify the list of references (jsc#PED-5021).
• efi/mokvar: Reserve the table only if it is in boot services data (bsc#1215375).
• io_uring: fix 32-bit compatability with sendmsg/recvmsg (bsc#1217709).

SUSE-CU-2024:150-1

This update for tar fixes the following issues:

• CVE-2023-39804: Fixed extension attributes in PAX archives incorrect hanling (bsc#1217969).

SUSE-CU-2024:76-1

This update for libxcrypt fixes the following issues:

• fix variable name for datamember [bsc#1215496]
• added patches fix https://github.com/besser82/libxcrypt/commit/b212d601549a0fc84cbbcaf21b931f903787d7e2

SUSE-CU-2024:70-1

This update for libsolv, zypper, libzypp fixes the following issues:

• Expand RepoVars in URLs downloading a .repo file (bsc#1212160)
• Fix search/info commands ignoring --ignore-unknown (bsc#1217593)
• CheckAccessDeleted: fix 'running in container' filter (bsc#1218291)
• Open rpmdb just once during execution of %posttrans scripts (bsc#1216412)
• Make sure reboot-needed is remembered until next boot (bsc#1217873)
• Stop using boost version 1 timer library (bsc#1215294)
• Updated to version 0.7.27
• Add zstd support for the installcheck tool
• Add putinowndirpool cache to make file list handling in repo_write much faster
• Do not use deprecated headerUnload with newer rpm versions
• Support complex deps in SOLVABLE_PREREQ_IGNOREINST
• Fix minimization not prefering installed packages in some cases
• Reduce memory usage in repo_updateinfoxml
• Fix lock-step interfering with architecture selection
• Fix choice rule handing for package downgrades
• Fix complex dependencies with an 'else' part sometimes leading to unsolved dependencies

SUSE-CU-2024:14-1

This update for procps fixes the following issues:

• Update procps to 3.3.17 (jsc#PED-3244 jsc#PED-6369)

• For support up to 2048 CPU as well (bsc#1185417)
• Allow `-� as leading character to ignore possible errors on systctl entries (bsc#1209122)
• Get the first CPU summary correct (bsc#1121753)
• Enable pidof for SLE-15 as this is provided by sysvinit-tools
• Use a check on syscall __NR_pidfd_open to decide if the pwait tool and its manual page will be build
• Do not truncate output of w with option -n
• Prefer logind over utmp (jsc#PED-3144)
• Don't install translated man pages for non-installed binaries (uptime, kill).
• Fix directory for Ukrainian man pages translations.
• Move localized man pages to lang package.

• Update to procps-ng-3.3.17

• Package translations in procps-lang.

• Fix pgrep: cannot allocate 4611686018427387903 bytes when ulimit -s is unlimited.

• Enable pidof by default

• Update to procps-ng-3.3.16

SUSE-CU-2023:4309-1

This update for curl fixes the following issues:

• libssh: Implement SFTP packet size limit (bsc#1216987)

SUSE-CU-2023:4232-1

This update for openslp bumps the version number to ensure a clean upgrade path from SLE-12 to SLE-15.
This is a no-change rebuild of the packages already available in SLE-15.

This update for openssh fixes the following issues:

• CVE-2023-48795: Fixed prefix truncation breaking ssh channel integrity (bsc#1217950).

• Fix the 'no route to host' error when connecting via ProxyJump

This update for avahi fixes the following issues:

• CVE-2023-38473: Fixed a reachable assertion when parsing a host name (bsc#1216419).
• CVE-2023-38470: Fixed that each label is at least one byte long (bsc#1215947).

SUSE-CU-2023:4198-1

This update for ncurses fixes the following issues:

• CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014)
• Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384)

SUSE-CU-2023:4174-1

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

• CVE-2023-39197: Fixed a out-of-bounds read in nf_conntrack_dccp_packet() (bsc#1216976).
• CVE-2023-6176: Fixed a denial of service in the cryptographic algorithm scatterwalk functionality (bsc#1217332).
• CVE-2023-45863: Fixed a out-of-bounds write in fill_kobj_path() (bsc#1216058).
• CVE-2023-45871: Fixed an issue in the IGB driver, where the buffer size may not be adequate for frames larger than the MTU (bsc#1216259).
• CVE-2023-39198: Fixed a race condition leading to use-after-free in qxl_mode_dumb_create() (bsc#1216965).
• CVE-2023-31083: Fixed race condition in hci_uart_tty_ioctl (bsc#1210780).
• CVE-2023-5717: Fixed a heap out-of-bounds write vulnerability in the Performance Events component (bsc#1216584).

• ALSA: hda: Disable power-save on KONTRON SinglePC (bsc#1217140).
• Call flush_delayed_fput() from nfsd main-loop (bsc#1217408).
• net: mana: Configure hwc timeout from hardware (bsc#1214037).
• net: mana: Fix MANA VF unload when hardware is unresponsive (bsc#1214764).
• powerpc: Do not clobber f0/vs0 during fp|altivec register save (bsc#1217780).

SUSE-CU-2023:4125-1

This update for libtirpc fixes the following issue:

• fix sed parsing in specfile (bsc#1216862)

SUSE-CU-2023:4071-1

This update for gpg2 fixes the following issues:

• `dirmngr-client --validate` is broken for DER-encoded files (bsc#1217212)

This update for dracut fixes the following issues:

• Update to version 049.1+suse.257.gf94c3fd1
• Fix network device naming in udev-rules (bsc#1192986)

This update for curl fixes the following issues:

• CVE-2023-46218: Fixed cookie mixed case PSL bypass (bsc#1217573).

SUSE-CU-2023:4017-1

This update for kernel-firmware fixes the following issues:
Update AMD ucode to 20231030 (bsc#1215831):

• CVE-2022-23820: Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary code execution.
• CVE-2021-46774: Insufficient input validation in ABL may enable a privileged attacker to perform arbitrary DRAM writes, potentially resulting in code execution and privilege escalation.
• CVE-2023-20533: Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker using DMA to read/write from/to invalid DRAM address potentially resulting in denial-of-service.

SUSE-CU-2023:3994-1

This update for psmisc fixes the following issues:

• Fix version number when building the package

SUSE-CU-2023:3936-1

This update for sqlite3 fixes the following issues:

• CVE-2023-2137: Fixed heap buffer overflow (bsc#1210660).

SUSE-CU-2023:3912-1

This update for vim fixes the following issues:

• CVE-2023-5344: Heap-based Buffer Overflow in vim prior to 9.0.1969 (bsc#1215940)
• CVE-2023-5441: segfault in exmode when redrawing (bsc#1216001)
• CVE-2023-5535: use-after-free from buf_contents_changed() (bsc#1216167)
• CVE-2023-46246: Integer Overflow in :history command (bsc#1216696)

This update for squashfs fixes the following issues:

• CVE-2015-4645,CVE-2015-4646: Multiple buffer overflows fixed in squashfs-tools (bsc#935380)
• CVE-2021-40153: Fixed an issue where an attacker might have been able to write a file outside of destination (bsc#1189936)
• CVE-2021-41072: Fixed an issue where an attacker might have been able to write a file outside the destination directory via a symlink (bsc#1190531).

SUSE-CU-2023:3889-1

This update for libzypp, zypper fixes the following issues:

• Preliminary disable 'rpm --runposttrans' usage for chrooted systems (bsc#1216091)
• Fix comment typo on zypp.conf (bsc#1215979)
• Attempt to delay %transfiletrigger(postun|in) execution if rpm supports it (bsc#1041742)
• Make sure the old target is deleted before a new one is created (bsc#1203760)
• Return 104 also if info suggests near matches
• Rephrase upgrade message for openSUSE Tumbleweed (bsc#1212422)
• commit: Insert a headline to separate output of different rpm scripts (bsc#1041742)

SUSE-CU-2023:3800-1

This update for openssl-1_1 fixes the following issues:

• CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service (bsc#1216922).

SUSE-CU-2023:3718-1

This update for gcc13 fixes the following issues:
This update ship the GCC 13.2 compiler suite and its base libraries.
The compiler base libraries are provided for all SUSE Linux Enterprise 15 versions and replace the same named GCC 12 ones.
The new compilers for C, C++, and Fortran are provided for SUSE Linux Enterprise 15 SP4 and SP5, and provided in the 'Development Tools' module.
The Go, D, Ada and Modula 2 language compiler parts are available unsupported via the PackageHub repositories.
To use gcc13 compilers use:

• install 'gcc13' or 'gcc13-c++' or one of the other 'gcc13-COMPILER' frontend packages.
• override your Makefile to use CC=gcc-13, CXX=g++-13 and similar overrides for the other languages.

• CVE-2023-4039: Fixed -fstack-protector issues on aarch64 with variable length stack allocations. (bsc#1214052)

• Work around third party app crash during C++ standard library initialization. [bsc#1216664]
• Fixed that GCC13 fails to compile some packages with error: unrecognizable insn (bsc#1215427)
• Bump included newlib to version 4.3.0.
• Update to GCC trunk head (r13-5254-g05b9868b182bb9)
• Redo floatn fixinclude pick-up to simply keep what is there.
• Turn cross compiler to s390x to a glibc cross. [bsc#1214460]

• Also handle -static-pie in the default-PIE specs
• Fixed missed optimization in Skia resulting in Firefox crashes when building with LTO. [bsc#1212101]
• Make libstdc++6-devel packages own their directories since they can be installed standalone. [bsc#1211427]
• Add new x86-related intrinsics (amxcomplexintrin.h).
• RISC-V: Add support for inlining subword atomic operations
• Use --enable-link-serialization rather that --enable-link-mutex, the benefit of the former one is that the linker jobs are not holding tokens of the make's jobserver.
• Add cross-bpf packages. See https://gcc.gnu.org/wiki/BPFBackEnd for the general state of BPF with GCC.
• Add bootstrap conditional to allow --without=bootstrap to be specified to speed up local builds for testing.
• Bump included newlib to version 4.3.0.
• Also package libhwasan_preinit.o on aarch64.
• Configure external timezone database provided by the timezone package. Make libstdc++6 recommend timezone to get a fully working std::chrono. Install timezone when running the testsuite.
• Package libhwasan_preinit.o on x86_64.
• Fixed unwinding on aarch64 with pointer signing. [bsc#1206684]
• Enable PRU flavour for gcc13
• update floatn fixinclude pickup to check each header separately (bsc#1206480)
• Redo floatn fixinclude pick-up to simply keep what is there.
• Bump libgo SONAME to libgo22.
• Do not package libhwasan for biarch (32-bit architecture) as the extension depends on 64-bit pointers.
• Adjust floatn fixincludes guard to work with SLE12 and earlier SLE15.
• Depend on at least LLVM 13 for GCN cross compiler.
• Update embedded newlib to version 4.2.0
• Allow cross-pru-gcc12-bootstrap for armv7l architecture. PRU architecture is used for real-time MCUs embedded into TI armv7l and aarch64 SoCs. We need to have cross-pru-gcc12 for armv7l in order to build both host applications and PRU firmware during the same build.

This update for libxml2 fixes the following issues:

• CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode() in tree.c (bsc#1216129).

SUSE-CU-2023:3714-1

This update for open-vm-tools fixes the following issues:

• Update to 12.3.5 (bsc#1216670)

SUSE-CU-2023:3691-1

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:

• CVE-2023-31085: Fixed a divide-by-zero error in do_div(sz,mtd->erasesize) that could cause a local DoS. (bsc#1210778)
• CVE-2023-45862: Fixed an issue in the ENE UB6250 reader driver whwere an object could potentially extend beyond the end of an allocation causing. (bsc#1216051)
• CVE-2023-2163: Fixed an incorrect verifier pruning in BPF that could lead to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape. (bsc#1215518)
• CVE-2023-3777: Fixed a use-after-free vulnerability in netfilter: nf_tables component can be exploited to achieve local privilege escalation. (bsc#1215095)
• CVE-2023-34324: Fixed a possible deadlock in Linux kernel event handling. (bsc#1215745).
• CVE-2023-39189: Fixed a flaw in the Netfilter subsystem that could allow a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure. (bsc#1216046)
• CVE-2023-3111: Fixed a use-after-free vulnerability in prepare_to_relocate in fs/btrfs/relocation.c (bsc#1212051).
• CVE-2023-39194: Fixed an out of bounds read in the XFRM subsystem (bsc#1215861).
• CVE-2023-39193: Fixed an out of bounds read in the xtables subsystem (bsc#1215860).
• CVE-2023-39192: Fixed an out of bounds read in the netfilter (bsc#1215858).
• CVE-2023-42754: Fixed a NULL pointer dereference in the IPv4 stack that could lead to denial of service (bsc#1215467).

• bpf: propagate precision in ALU/ALU64 operations (git-fixes).
• KVM: x86: fix sending PV IPI (git-fixes, bsc#1210853, bsc#1216134).
• nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid() (bsc#1214842).

SUSE-CU-2023:3684-1

This Update for libtirpc to 1.3.4, fixing the following issues: Update to 1.3.4 (bsc#1199467)
* binddynport.c honor ip_local_reserved_ports - replaces: binddynport-honor-ip_local_reserved_ports.patch * gss-api: expose gss major/minor error in authgss_refresh() * rpcb_clnt.c: Eliminate double frees in delete_cache() * rpcb_clnt.c: memory leak in destroy_addr * portmapper: allow TCP-only portmapper * getnetconfigent: avoid potential DoS issue by removing unnecessary sleep * clnt_raw.c: fix a possible null pointer dereference * bindresvport.c: fix a potential resource leakage
Update to 1.3.3:

• Fix DoS vulnerability in libtirpc - replaces: 0001-Fix-DoS-vulnerability-in-libtirpc.patch
• _rpc_dtablesize: use portable system call
• libtirpc: Fix use-after-free accessing the error number
• Fix potential memory leak of parms.r_addr - replaces 0001-fix-parms.r_addr-memory-leak.patch
• rpcb_clnt.c add mechanism to try v2 protocol first - preplaces: 0001-rpcb_clnt.c-config-to-try-protocolversion-2-first.patch
• Eliminate deadlocks in connects with an MT environment
• clnt_dg_freeres() uncleared set active state may deadlock
• thread safe clnt destruction
• SUNRPC: mutexed access blacklist_read state variable
• SUNRPC: MT-safe overhaul of address cache management in rpcb_clnt.c

• Replace the final SunRPC licenses with BSD licenses
• blacklist: Add a few more well known ports
• libtirpc: disallow calling auth_refresh from clnt_call with RPCSEC_GSS

• Remove AUTH_DES interfaces from auth_des.h The unsupported AUTH_DES authentication has be compiled out since commit d918e41d889 (Wed Oct 9 2019) replaced by API routines that return errors.
• svc_dg: Free xp_netid during destroy
• Fix memory management issues of fd locks
• libtirpc: replace array with list for per-fd locks
• __svc_vc_dodestroy: fix double free of xp_ltaddr.buf
• __rpc_dtbsize: rlim_cur instead of rlim_max
• pkg-config: use the correct replacements for libdir/includedir

SUSE-CU-2023:3631-1

This update for pciutils fixes the following issues:

• Buffer overflow error that would cause lspci to crash on systems with complex topologies (bsc#1215265)

SUSE-CU-2023:3630-1

This update for perl-Bootloader fixes the following issues:

• `bootloader_entry` script can have an optional 'force-default' argument (bsc#1215064)

SUSE-CU-2023:3615-1

This update for openssl-1_1 fixes the following issues:

• Displays 'fips' in the version string (bsc#1215215)

This update for open-vm-tools fixes the following issues:

• CVE-2023-34058: Fixed a SAML token signature bypass issue (bsc#1216432).
• CVE-2023-34059: Fixed a privilege escalation issue through vmware-user-suid-wrapper (bsc#1216433).

SUSE-CU-2023:3566-1

This update for zlib fixes the following issues:

• CVE-2023-45853: Fixed an integer overflow that would lead to a buffer overflow in the minizip subcomponent (bsc#1216378).

SUSE-CU-2023:3553-1

This update for nghttp2 fixes the following issues:

• CVE-2023-44487: Fixed HTTP/2 Rapid Reset attack. (bsc#1216174)

SUSE-CU-2023:3535-1

This update for suse-module-tools fixes the following issues:

• Updated to version 15.3.17:

• Updated to version 15.3.16:

This update for gcc13 fixes the following issues:
This update ship the GCC 13.2 compiler suite and its base libraries.
The compiler base libraries are provided for all SUSE Linux Enterprise 15 versions and replace the same named GCC 12 ones.
The new compilers for C, C++, and Fortran are provided for SUSE Linux Enterprise 15 SP4 and SP5, and provided in the 'Development Tools' module.
The Go, D, Ada and Modula 2 language compiler parts are available unsupported via the PackageHub repositories.
To use gcc13 compilers use:

• install 'gcc13' or 'gcc13-c++' or one of the other 'gcc13-COMPILER' frontend packages.
• override your Makefile to use CC=gcc13, CXX=g++13 and similar overrides for the other languages.

• CVE-2023-4039: Fixed -fstack-protector issues on aarch64 with variable length stack allocations. (bsc#1214052)

• Turn cross compiler to s390x to a glibc cross. [bsc#1214460]

• Also handle -static-pie in the default-PIE specs
• Fixed missed optimization in Skia resulting in Firefox crashes when building with LTO. [bsc#1212101]
• Make libstdc++6-devel packages own their directories since they can be installed standalone. [bsc#1211427]
• Add new x86-related intrinsics (amxcomplexintrin.h).
• RISC-V: Add support for inlining subword atomic operations
• Use --enable-link-serialization rather that --enable-link-mutex, the benefit of the former one is that the linker jobs are not holding tokens of the make's jobserver.
• Add cross-bpf packages. See https://gcc.gnu.org/wiki/BPFBackEnd for the general state of BPF with GCC.
• Add bootstrap conditional to allow --without=bootstrap to be specified to speed up local builds for testing.
• Bump included newlib to version 4.3.0.
• Also package libhwasan_preinit.o on aarch64.
• Configure external timezone database provided by the timezone package. Make libstdc++6 recommend timezone to get a fully working std::chrono. Install timezone when running the testsuite.
• Package libhwasan_preinit.o on x86_64.
• Fixed unwinding on aarch64 with pointer signing. [bsc#1206684]
• Enable PRU flavour for gcc13
• update floatn fixinclude pickup to check each header separately (bsc#1206480)
• Redo floatn fixinclude pick-up to simply keep what is there.
• Bump libgo SONAME to libgo22.
• Do not package libhwasan for biarch (32-bit architecture) as the extension depends on 64-bit pointers.
• Adjust floatn fixincludes guard to work with SLE12 and earlier SLE15.
• Depend on at least LLVM 13 for GCN cross compiler.
• Update embedded newlib to version 4.2.0
• Allow cross-pru-gcc12-bootstrap for armv7l architecture. PRU architecture is used for real-time MCUs embedded into TI armv7l and aarch64 SoCs. We need to have cross-pru-gcc12 for armv7l in order to build both host applications and PRU firmware during the same build.

SUSE-CU-2023:3496-1

This update for aaa_base fixes the following issues:

• Respect /etc/update-alternatives/java when setting JAVA_HOME (bsc#1215434,bsc#1107342)

SUSE-CU-2023:3468-1

This update for grub2 fixes the following issues:

• CVE-2023-4692: Fixed an out-of-bounds write at fs/ntfs.c which may lead to unsigned code execution. (bsc#1215935)
• CVE-2023-4693: Fixed an out-of-bounds read at fs/ntfs.c which may lead to leak sensitive information. (bsc#1215936)

SUSE-CU-2023:3463-1

This update for glibc fixes the following issues:
Security issue fixed:

• CVE-2023-4813: Fixed a potential use-after-free in gaih_inet() (bsc#1215286, BZ #28931)

• elf: Align argument of __munmap to page size (bsc#1215891, BZ #28676)

This update for open-vm-tools fixes the following issue:

• Ship correct open-vm-tools version to 15-SP4 (bsc#1205927)

SUSE-CU-2023:3452-1

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:

• CVE-2023-1206: Fixed a hash collision flaw in the IPv6 connection lookup table. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6 connections up to 95% (bsc#1212703).
• CVE-2023-42753: Fixed an array indexing vulnerability in the netfilter subsystem. This issue may have allowed a local user to crash the system or potentially escalate their privileges on the system. (bsc#1215150)
• CVE-2023-4389: Fixed a a double decrement of the reference count flaw in the btrfs filesystem a double decrement of the reference count, which may have allowed a local attacker with user privilege to crash the system or may lead to leaked internal kernel information. (bsc#1214351)
• CVE-2023-4921: Fixed a use-after-free vulnerability in the sch_qfq component which could be exploited to achieve local privilege escalation. (bsc#1215275)
• CVE-2023-23454: Fixed a type-confusion in the CBQ network scheduler (bsc#1207036).
• CVE-2023-4004: Fixed improper element removal netfilter nft_set_pipapo (bsc#1213812).
• CVE-2023-4622: Fixed a use-after-free vulnerability in the af_unix component which could be exploited to achieve local privilege escalation. (bsc#1215117)
• CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve local privilege escalation (bsc#1215115).
• CVE-2020-36766: Fixed an issue in drivers/media/cec/core/cec-api.c which could leaks one byte of kernel memory on specific hardware to unprivileged users. (bsc#1215299)
• CVE-2023-1859: Fixed a use-after-free flaw in Xen transport for 9pfs. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak. (bsc#1210169)
• CVE-2023-2177: Fixed a null pointer dereference issue in the sctp network protocol which could allow a user to crash the system or potentially cause a denial of service. (bsc#1210643)
• CVE-2023-4881: Fixed a out-of-bounds write flaw in the netfilter subsystem that could lead to potential information disclosure or a denial of service (bsc#1215221).
• CVE-2023-40283: Fixed use-after-free in l2cap_sock_ready_cb (bsc#1214233).
• CVE-2023-1192: Fixed use-after-free in cifs_demultiplex_thread() (bsc#1208995).

• bnx2x: new flag for track HW resource allocation (bsc#1202845 bsc#1215322).
• locking/rwsem: Disable reader optimistic spinning (bnc#1176588).
• mkspec: Allow unsupported KMPs (bsc#1214386)
• scsi: qedf: Add synchronization between I/O completions and abort (bsc#1210658).
• x86/pkeys: Revert a5eff7259790 ('x86/pkeys: Add PKRU value to init_fpstate') (bsc#1215356).
• x86/srso: Do not probe microcode in a guest (git-fixes).
• x86/srso: Fix SBPB enablement for spec_rstack_overflow=off (git-fixes).
• x86/srso: Fix srso_show_state() side effect (git-fixes).
• x86/srso: Set CPUID feature bits independently of bug or mitigation status (git-fixes).

SUSE-CU-2023:3373-1

This update for curl fixes the following issues:

• CVE-2023-38546: Fixed a cookie injection with none file (bsc#1215889).

SUSE-CU-2023:3364-1

This update for shadow fixes the following issues:

• CVE-2023-4641: Fixed potential password leak (bsc#1214806).

SUSE-CU-2023:3339-1

This update for zypper fixes the following issues:

• Fix name of the bash completion script (bsc#1215007)
• Update notes about failing signature checks (bsc#1214395)
• Improve the SIGINT handler to be signal safe (bsc#1214292)
• Update to version 1.14.64
• Changed location of bash completion script (bsc#1213854).

SUSE-CU-2023:3320-1

This update for nghttp2 fixes the following issues:

• CVE-2023-35945: Fixed memory leak when PUSH_PROMISE or HEADERS frame cannot be sent (bsc#1215713).

SUSE-CU-2023:3268-1

This update for mdadm fixes the following issues:

• CVE-2023-28736: Fixed a buffer overflow (bsc#1214244).
• CVE-2023-28938: Fixed uncontrolled resource consumption (bsc#1214245).

This update for vim fixes the following issues:
Security fixes:

• CVE-2023-4733: Fixed use-after-free in function buflist_altfpos (bsc#1215004).
• CVE-2023-4734: Fixed segmentation fault in function f_fullcommand (bsc#1214925).
• CVE-2023-4735: Fixed out of bounds write in ops.c (bsc#1214924).
• CVE-2023-4738: Fixed heap buffer overflow in vim_regsub_both (bsc#1214922).
• CVE-2023-4752: Fixed heap use-after-free in function ins_compl_get_exp (bsc#1215006).
• CVE-2023-4781: Fixed heap buffer overflow in function vim_regsub_both (bsc#1215033).

• Update to version 9.0 with patch level 1894, for the complete list of changes see https://github.com/vim/vim/compare/v9.0.1443...v9.0.1894
• Use app icons generated from vimlogo.eps in the source tarball; add higher resolution icons of sizes 128x128, 256x256, and 512x512 as png sources

SUSE-CU-2023:3164-1

This update for glibc fixes the following issues:

• nscd: Fix netlink cache invalidation if epoll is used (bsc#1212910, BZ #29415)
• Restore lookup of IPv4 mapped addresses in files database (bsc#1212819, BZ #25457)
• elf: Remove excessive p_align check on PT_LOAD segments (bsc#1211829, BZ #28688)
• elf: Properly align PT_LOAD segments (bsc#1211829, BZ #28676)
• ld.so: Always use MAP_COPY to map the first segment (BZ #30452)
• add GB18030-2022 charmap (jsc#PED-4908, BZ #30243)

This update for python3 fixes the following issues:

• CVE-2023-40217: Fixed TLS handshake bypass on closed sockets (bsc#1214692).

This update for open-vm-tools fixes the following issues:
Update to 12.3.0 (build 22234872) (bsc#1214850)

• There are no new features in the open-vm-tools 12.3.0 release. This is primarily a maintenance release that addresses a few critical problems, including:

• For complete details, see: https://github.com/vmware/open-vm-tools/releases/tag/stable-12.3.0
• Release Notes are available at https://github.com/vmware/open-vm-tools/blob/stable-12.3.0/ReleaseNotes.md
• The granular changes that have gone into the 12.3.0 release are in the ChangeLog at https://github.com/vmware/open-vm-tools/blob/stable-12.3.0/open-vm-tools/ChangeLog
• Fix (bsc#1205927) - hv_vmbus module is loaded unnecessarily in VMware guests
• jsc#PED-1344 - reinable building containerinfo plugin for SLES 15 SP4.

SUSE-CU-2023:3149-1

This update for container-selinux fixes the following issues:

• Ensure proper labels for conmon and fix startup issues (bsc#1211866)

SUSE-CU-2023:3069-1

This update for libxml2 fixes the following issues:

• CVE-2023-39615: Fixed crafted xml can cause global buffer overflow (bsc#1214768).

SUSE-CU-2023:3042-1

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

• CVE-2022-36402: Fixed an integer overflow vulnerability in vmwgfx driver in that allowed a local attacker with a user account on the system to gain privilege, causing a denial of service (bsc#1203517).
• CVE-2023-2007: Fixed a flaw in the DPT I2O Controller driver that could allow an attacker to escalate privileges and execute arbitrary code in the context of the kernel (bsc#1210448).
• CVE-2023-3772: Fixed a flaw in XFRM subsystem that may have allowed a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL pointer leading to a possible kernel crash and denial of service (bsc#1213666).
• CVE-2023-3863: Fixed a use-after-free flaw was found in nfc_llcp_find_local that allowed a local user with special privileges to impact a kernel information leak issue (bsc#1213601).
• CVE-2023-4128: Fixed a use-after-free flaw in net/sched/cls_fw.c that allowed a local attacker to perform a local privilege escalation due to incorrect handling of the existing filter, leading to a kernel information leak issue (bsc#1214149).
• CVE-2023-4132: Fixed use-after-free vulnerability was found in the siano smsusb module that allowed a local user to crash the system, causing a denial of service condition (bsc#1213969).
• CVE-2023-4133: Fixed use after free bugs caused by circular dependency problem in cxgb4 (bsc#1213970).
• CVE-2023-4134: Fixed use-after-free in cyttsp4_watchdog_work() (bsc#1213971).
• CVE-2023-4147: Fixed use-after-free in nf_tables_newrule (bsc#1213968).
• CVE-2023-4194: Fixed a type confusion in net tun_chr_open() (bsc#1214019).
• CVE-2023-4273: Fixed a flaw in the exFAT driver of the Linux kernel that alloawed a local privileged attacker to overflow the kernel stack (bsc#1214120).
• CVE-2023-4385: Fixed a NULL pointer dereference flaw in dbFree that may have allowed a local attacker to crash the system due to a missing sanity check (bsc#1214348).
• CVE-2023-4387: Fixed use-after-free flaw in vmxnet3_rq_alloc_rx_buf that could allow a local attacker to crash the system due to a double-free (bsc#1214350).
• CVE-2023-4459: Fixed a NULL pointer dereference flaw in vmxnet3_rq_cleanup that may have allowed a local attacker with normal user privilege to cause a denial of service (bsc#1214451).
• CVE-2023-20588: Fixed a division-by-zero error on some AMD processors that can potentially return speculative data resulting in loss of confidentiality (bsc#1213927).
• CVE-2023-21400: Fixed several memory corruptions due to improper locking in io_uring (bsc#1213272).
• CVE-2023-34319: Fixed buffer overrun triggered by unusual packet in xen/netback (XSA-432) (bsc#1213546).

• ARM: spear: Do not use timer namespace for timer_shutdown() function (bsc#1213970).
• Do not add and remove genksyms ifdefs
• clocksource/drivers/arm_arch_timer: Do not use timer namespace for timer_shutdown() function (bsc#1213970).
• clocksource/drivers/sp804: Do not use timer namespace for timer_shutdown() function (bsc#1213970).
• e1000: Fix fall-through warnings for Clang (jsc#PED-5738).
• e1000: Fix typos in comments (jsc#PED-5738).
• e1000: Remove unnecessary use of kmap_atomic() (jsc#PED-5738).
• e1000: drop unneeded assignment in e1000_set_itr() (jsc#PED-5738).
• e1000: switch to napi_consume_skb() (jsc#PED-5738).
• intel/e1000:fix repeated words in comments (jsc#PED-5738).
• intel: remove checker warning (jsc#PED-5738).
• kabi/severities: Ignore newly added SRSO mitigation functions
• md/raid0: Factor out helper for mapping and submitting a bio (bsc#1213916).
• md/raid0: Fix performance regression for large sequential writes (bsc#1213916).
• net: e1000: remove repeated word 'slot' for e1000_main.c (jsc#PED-5738).
• net: e1000: remove repeated words for e1000_hw.c (jsc#PED-5738).
• powerpc/rtas: block error injection when locked down (bsc#1023051).
• powerpc/rtas: mandate RTAS syscall filtering (bsc#1023051).
• powerpc/rtas: move syscall filter setup into separate function (bsc#1023051).
• powerpc/rtas: remove ibm_suspend_me_token (bsc#1023051).
• powerpc: Move DMA64_PROPNAME define to a header (bsc#1214297 ltc#197503).
• pseries/iommu/ddw: Fix kdump to work in absence of ibm,dma-window (bsc#1214297 ltc#197503).
• timers: Add shutdown mechanism to the internal functions (bsc#1213970).
• timers: Provide timer_shutdown[_sync]() (bsc#1213970).
• timers: Rename del_timer() to timer_delete() (bsc#1213970).
• timers: Rename del_timer_sync() to timer_delete_sync() (bsc#1213970).
• timers: Replace BUG_ON()s (bsc#1213970).
• timers: Silently ignore timers with a NULL function (bsc#1213970).
• timers: Split [try_to_]del_timer[_sync]() to prepare for shutdown mode (bsc#1213970).
• timers: Update kernel-doc for various functions (bsc#1213970).
• timers: Use del_timer_sync() even on UP (bsc#1213970).
• x86/cpu/kvm: Provide UNTRAIN_RET_VM (git-fixes).
• x86/cpu: Cleanup the untrain mess (git-fixes).
• x86/cpu: Rename original retbleed methods (git-fixes).
• x86/cpu: Rename srso_(.*)_alias to srso_alias_\1 (git-fixes).
• x86/retpoline: Do not clobber RFLAGS during srso_safe_ret() (git-fixes).
• x86/speculation: Add cpu_show_gds() prototype (git-fixes).
• x86/speculation: Mark all Skylake CPUs as vulnerable to GDS (git-fixes).
• x86/srso: Correct the mitigation status when SMT is disabled (git-fixes).
• x86/srso: Disable the mitigation on unaffected configurations (git-fixes).
• x86/srso: Explain the untraining sequences a bit more (git-fixes).
• x86: Move gds_ucode_mitigated() declaration to header (git-fixes).
• xfs: fix sb write verify for lazysbcount (bsc#1214275).
• xfs: gut error handling in xfs_trans_unreserve_and_mod_sb() (bsc#1214275).
• xfs: update superblock counters correctly for !lazysbcount (bsc#1214275).

SUSE-CU-2023:3018-1

This update for libeconf fixes the following issues:
Update to version 0.5.2.

• CVE-2023-30078, CVE-2023-32181: Fixed a stack-buffer-overflow vulnerability in 'econf_writeFile' function (bsc#1211078).
• CVE-2023-30079, CVE-2023-22652: Fixed a stack-buffer-overflow vulnerability in 'read_file' function. (bsc#1211078)

• Fixed parsing files correctly which have space characters AND none space characters as delimiters (bsc#1198165).

This update for gcc12 fixes the following issues:

• CVE-2023-4039: Fixed incorrect stack protector for C99 VLAs on Aarch64 (bsc#1214052).

SUSE-CU-2023:2903-1

This update for mdadm fixes the following issues:

• Make sure initramfs is rebuilt in %posttrans (bsc#1214427)

This update for open-iscsi fixes the following issues:
-Set 'safe_logout' and 'startup' in iscsid.conf (bsc#1207157)

SUSE-CU-2023:2864-1

This update for dracut fixes the following issues:

• Exit if resolving executable dependencies fails (bsc#1214081)

SUSE-CU-2023:2821-1

This update for libzypp, zypper fixes the following issues:

• Fix occasional isue with downloading very small files (bsc#1213673)
• Fix negative ZYPP_LOCK_TIMEOUT not waiting forever (bsc#1213231)
• Fix OES synchronization issues when cookie file has mode 0600 (bsc#1158763)
• Don't cleanup orphaned dirs if read-only mode was promised (bsc#1210740)
• Revised explanation of --force-resolution in man page (bsc#1213557)
• Print summary hint if policies were violated due to --force-resolution (bsc#1213557)

SUSE-CU-2023:2820-1

This update for open-vm-tools fixes the following issues:

• CVE-2023-20900: Fixed SAML token signature bypass vulnerability (bsc#1214566).

SUSE-CU-2023:2770-1

This update for parted fixes the following issues:

• fix null pointer dereference (bsc#1193412)
• update mkpart options in manpage (bsc#1182142)

This update for procps fixes the following issues:
- CVE-2023-4016: Fixed ps buffer overflow (bsc#1214290).

This update for lvm2 fixes the following issues:

• blkdeactivate calls wrong mountpoint cmd (bsc#1214071)

SUSE-CU-2023:2765-1

This update for gawk fixes the following issues:

• CVE-2023-4156: Fix a heap out of bound read by validating the index into argument list. (bsc#1214025)

This update for qemu fixes the following issues:

• CVE-2023-0330: Fixed a stack overflow due to a DMA reentrancy issue. (bsc#1207205)
• CVE-2023-3354: Fixed a remote unauthenticated DoS due to an improper I/O watch removal in VNC TLS handshake. (bsc#1212850)
• CVE-2023-3180: Fixed a heap buffer overflow in virtio_crypto_sym_op_helper(). (bsc#1213925)
• CVE-2021-3638: Fixed an out-of-bounds write due to an inconsistent check in ati_2d_blt(). (bsc#1188609)
• CVE-2023-3301: Fixed a DoS due to an assertion failure. (bsc#1213414)
• CVE-2021-3750: Fixed an use-after-free in DMA reentrancy issue. (bsc#1190011)

This update for ca-certificates-mozilla fixes the following issues:

• Updated to 2.62 state of Mozilla SSL root CAs (bsc#1214248) Added: - Atos TrustedRoot Root CA ECC G2 2020 - Atos TrustedRoot Root CA ECC TLS 2021 - Atos TrustedRoot Root CA RSA G2 2020 - Atos TrustedRoot Root CA RSA TLS 2021 - BJCA Global Root CA1 - BJCA Global Root CA2 - LAWtrust Root CA2 (4096) - Sectigo Public Email Protection Root E46 - Sectigo Public Email Protection Root R46 - Sectigo Public Server Authentication Root E46 - Sectigo Public Server Authentication Root R46 - SSL.com Client ECC Root CA 2022 - SSL.com Client RSA Root CA 2022 - SSL.com TLS ECC Root CA 2022 - SSL.com TLS RSA Root CA 2022 Removed CAs: - Chambers of Commerce Root - E-Tugra Certification Authority - E-Tugra Global Root CA ECC v3 - E-Tugra Global Root CA RSA v3 - Hongkong Post Root CA 1

This update for freetype2 fixes the following issues:

• CVE-2023-2004: Fixed integer overflow in tt_hvadvance_adjust (bsc#1210419).

SUSE-CU-2023:2750-1

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

• CVE-2022-40982: Fixed transient execution attack called 'Gather Data Sampling' (bsc#1206418).
• CVE-2023-0459: Fixed information leak in __uaccess_begin_nospec (bsc#1211738).
• CVE-2023-20569: Fixed side channel attack ‘Inception’ or ‘RAS Poisoning’ (bsc#1213287).
• CVE-2023-20593: Fixed a ZenBleed issue in 'Zen 2' CPUs that could allow an attacker to potentially access sensitive information (bsc#1213286).
• CVE-2023-2156: Fixed a flaw in the networking subsystem within the handling of the RPL protocol (bsc#1211131).
• CVE-2023-2985: Fixed an use-after-free vulnerability in hfsplus_put_super in fs/hfsplus/super.c that could allow a local user to cause a denial of service (bsc#1211867).
• CVE-2023-3117: Fixed an use-after-free vulnerability in the netfilter subsystem when processing named and anonymous sets in batch requests that could allow a local user with CAP_NET_ADMIN capability to crash or potentially escalate their privileges on the system (bsc#1213245).
• CVE-2023-31248: Fixed an use-after-free vulnerability in nft_chain_lookup_byid that could allow a local attacker to escalate their privilege (bsc#1213061).
• CVE-2023-3390: Fixed an use-after-free vulnerability in the netfilter subsystem in net/netfilter/nf_tables_api.c that could allow a local attacker with user access to cause a privilege escalation issue (bsc#1212846).
• CVE-2023-35001: Fixed an out-of-bounds memory access flaw in nft_byteorder that could allow a local attacker to escalate their privilege (bsc#1213059).
• CVE-2023-3567: Fixed a use-after-free in vcs_read in drivers/tty/vt/vc_screen.c (bsc#1213167).
• CVE-2023-3609: Fixed reference counter leak leading to overflow in net/sched (bsc#1213586).
• CVE-2023-3611: Fixed an out-of-bounds write in net/sched sch_qfq(bsc#1213585).
• CVE-2023-3776: Fixed improper refcount update in cls_fw leads to use-after-free (bsc#1213588).
• CVE-2023-3812: Fixed an out-of-bounds memory access flaw in the TUN/TAP device driver functionality that could allow a local user to crash or potentially escalate their privileges on the system (bsc#1213543).

• arm: cpu: switch to arch_cpu_finalize_init() (bsc#1206418).
• block, bfq: fix division by zero error on zero wsum (bsc#1213653).
• get module prefix from kmod (bsc#1212835).
• init, x86: move mem_encrypt_init() into arch_cpu_finalize_init() (bsc#1206418).
• init: invoke arch_cpu_finalize_init() earlier (bsc#1206418).
• init: provide arch_cpu_finalize_init() (bsc#1206418).
• init: remove check_bugs() leftovers (bsc#1206418).
• jbd2: export jbd2_journal_[grab|put]_journal_head (bsc#1199304).
• kernel-binary.spec.in: remove superfluous %% in supplements fixes: 02b7735e0caf ('rpm/kernel-binary.spec.in: add enhances and supplements tags to in-tree kmps')
• kernel-docs: add buildrequires on python3-base when using python3 the python3 binary is provided by python3-base.
• kernel-docs: use python3 together with python3-sphinx (bsc#1212741).
• keys: do not cache key in task struct if key is requested from kernel thread (bsc#1213354).
• lockdep: add preemption enabled/disabled assertion apis (bsc#1207270 jsc#ped-4567).
• locking/rwsem: add __always_inline annotation to __down_read_common() and inlined callers (bsc#1207270 jsc#ped-4567).
• locking/rwsem: allow slowpath writer to ignore handoff bit if not set by first waiter (bsc#1207270 jsc#ped-4567).
• locking/rwsem: always try to wake waiters in out_nolock path (bsc#1207270 jsc#ped-4567).
• locking/rwsem: better collate rwsem_read_trylock() (bsc#1207270 jsc#ped-4567).
• locking/rwsem: conditionally wake waiters in reader/writer slowpaths (bsc#1207270 jsc#ped-4567).
• locking/rwsem: disable preemption for spinning region (bsc#1207270 jsc#ped-4567).
• locking/rwsem: disable preemption in all down_read*() and up_read() code paths (bsc#1207270 jsc#ped-4567).
• locking/rwsem: disable preemption in all down_write*() and up_write() code paths (bsc#1207270 jsc#ped-4567).
• locking/rwsem: disable preemption while trying for rwsem lock (bsc#1207270 jsc#ped-4567).
• locking/rwsem: enable reader optimistic lock stealing (bsc#1207270 jsc#ped-4567).
• locking/rwsem: fix comment typo (bsc#1207270 jsc#ped-4567).
• locking/rwsem: fix comments about reader optimistic lock stealing conditions (bsc#1207270 jsc#ped-4567).
• locking/rwsem: fold __down_{read,write}*() (bsc#1207270 jsc#ped-4567).
• locking/rwsem: introduce rwsem_write_trylock() (bsc#1207270 jsc#ped-4567).
• locking/rwsem: make handoff bit handling more consistent (bsc#1207270 jsc#ped-4567).
• locking/rwsem: no need to check for handoff bit if wait queue empty (bsc#1207270 jsc#ped-4567).
• locking/rwsem: optimize down_read_trylock() under highly contended case (bsc#1207270 jsc#ped-4567).
• locking/rwsem: pass the current atomic count to rwsem_down_read_slowpath() (bsc#1207270 jsc#ped-4567).
• locking/rwsem: prevent non-first waiter from spinning in down_write() slowpath (bsc#1207270 jsc#ped-4567).
• locking/rwsem: prevent potential lock starvation (bsc#1207270 jsc#ped-4567).
• locking/rwsem: remove an unused parameter of rwsem_wake() (bsc#1207270 jsc#ped-4567).
• locking/rwsem: remove reader optimistic spinning (bsc#1207270 jsc#ped-4567).
• locking: add missing __sched attributes (bsc#1207270 jsc#ped-4567).
• locking: remove rcu_read_{,un}lock() for preempt_{dis,en}able() (bsc#1207270 jsc#ped-4567).
• net/sched: sch_qfq: refactor parsing of netlink parameters (bsc#1213585).
• net: mana: add support for vlan tagging (bsc#1212301).
• ocfs2: fix a deadlock when commit trans (bsc#1199304).
• ocfs2: fix defrag path triggering jbd2 assert (bsc#1199304).
• ocfs2: fix race between searching chunks and release journal_head from buffer_head (bsc#1199304).
• remove more packaging cruft for sle < 12 sp3
• rpm/check-for-config-changes: ignore also pahole_has_* we now also have options like config_pahole_has_lang_exclude.
• rpm/check-for-config-changes: ignore also riscv_isa_* and dynamic_sigframe they depend on config_toolchain_has_*.
• rwsem: implement down_read_interruptible (bsc#1207270 jsc#ped-4567).
• rwsem: implement down_read_killable_nested (bsc#1207270 jsc#ped-4567).
• ubi: ensure that vid header offset + vid header size <= alloc, size (bsc#1210584).
• ubi: fix failure attaching when vid_hdr offset equals to (sub)page size (bsc#1210584).
• usrmerge: adjust module path in the kernel sources (bsc#1212835).
• x86/cpu: switch to arch_cpu_finalize_init() (bsc#1206418).
• x86/fpu: remove cpuinfo argument from init functions (bsc#1206418).
• x86/microcode/AMD: Make stub function static inline (bsc#1213868).

SUSE-CU-2023:2746-1

This update for rsync fixes the following issues:

• Update to version 3.2.3 (jsc#SLE-21252, jsc#PED-3146)
• Add support for using --atimes to preserve atime of files in destination sync (jsc#PED-3145)
• Remove SuSEfirewall2 service as this was replaced by firewalld (which already provides a rsyncd service).
• Fix --delay-updates never updates after interruption (bsc#1204538)
• Arbitrary file write vulnerability via do_server_recv function (bsc#1201840, CVE-2022-29154)
• rsync-ssl: Verify the hostname in the certificate when using openssl. (bsc#1176160, CVE-2020-14387)

SUSE-CU-2023:2731-1

This update for kernel-firmware fixes the following issues:

• CVE-2023-20569: Fixed AMD 19h ucode to mitigate a side channel vulnerability in some of the AMD CPUs. (bsc#1213287)

This update for krb5 fixes the following issues:

• CVE-2023-36054: Fixed a DoS that could be triggered by an authenticated remote user. (bsc#1214054)

SUSE-CU-2023:2710-1

This update for python-pyasn1 fixes the following issues:

• To avoid users of this package having to recompile bytecode files, change the mtime of any __init__.py. (bsc#1207805)

SUSE-CU-2023:2621-1

This update for blog fixes the following issues:

• Fix big endian cast problems to be able to read commands and ansers as well as passphrases

This update for shadow fixes the following issues:

• Prevent lock files from remaining after power interruptions (bsc#1213189)
• Add --prefix support to passwd, chpasswd and chage (bsc#1206627)

This update for openssl-1_1 fixes the following issues:

• CVE-2023-3817: Fixed a potential DoS due to excessive time spent checking DH q parameter value. (bsc#1213853)

SUSE-CU-2023:2578-1

This update for vim fixes the following issues:

• Calling vim on xterm leads to missing first character of the command prompt (bsc#1211461)

SUSE-CU-2023:2542-1