kernel update [SLES15 SP6 6.4.0-150600.23.33.1]

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security
bugfixes.

The following security bugs were fixed:

• CVE-2024-26924: scsi: lpfc: Release hbalock before calling
  lpfc_worker_wake_up() (bsc#1225820).
• CVE-2024-27397: netfilter: nf_tables: use timestamp to check for set element
  timeout (bsc#1224095).
• CVE-2024-35839: kABI fix for netfilter: bridge: replace physindev with
  physinif in nf_bridge_info (bsc#1224726).
• CVE-2024-36915: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
  (bsc#1225758).
• CVE-2024-41042: Prefer nft_chain_validate (bsc#1228526).
• CVE-2024-44934: net: bridge: mcast: wait for previous gc cycles when
  removing port (bsc#1229809).
• CVE-2024-44996: vsock: fix recursive ->recvmsg calls (bsc#1230205).
• CVE-2024-47678: icmp: change the order of rate limits (bsc#1231854).
• CVE-2024-50018: net: napi: Prevent overflow of napi_defer_hard_irqs
  (bsc#1232419).
• CVE-2024-50039: kABI: Restore deleted
  EXPORT_SYMBOL(__qdisc_calculate_pkt_len) (bsc#1231909).
• CVE-2024-50202: nilfs2: propagate directory read errors from
  nilfs_find_entry() (bsc#1233324).
• CVE-2024-50256: netfilter: nf_reject_ipv6: fix potential crash in
  nf_send_reset6() (bsc#1233200).
• CVE-2024-50262: bpf: Fix out-of-bounds write in trie_get_next_key()
  (bsc#1233239).
• CVE-2024-50278, CVE-2024-50280: dm cache: fix flushing uninitialized
  delayed_work on cache_ctr error (bsc#1233467 bsc#1233469).
• CVE-2024-50278: dm cache: fix potential out-of-bounds access on the first
  resume (bsc#1233467).
• CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when
  resizing (bsc#1233468).
• CVE-2024-53050: drm/i915/hdcp: Add encoder check in hdcp2_get_capability
  (bsc#1233546).
• CVE-2024-53064: idpf: fix idpf_vc_core_init error path (bsc#1233558
  bsc#1234464).
• CVE-2024-53090: afs: Fix lock recursion (bsc#1233637).
• CVE-2024-53095: smb: client: Fix use-after-free of network namespace
  (bsc#1233642).
• CVE-2024-53099: bpf: Check validity of link->type in bpf_link_show_fdinfo()
  (bsc#1233772).
• CVE-2024-53105: mm: page_alloc: move mlocked flag clearance into
  free_pages_prepare() (bsc#1234069).
• CVE-2024-53111: mm/mremap: fix address wraparound in move_page_tables()
  (bsc#1234086).
• CVE-2024-53113: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
  (bsc#1234077).
• CVE-2024-53117: virtio/vsock: Improve MSG_ZEROCOPY error handling
  (bsc#1234079).
• CVE-2024-53118: vsock: Fix sk_error_queue memory leak (bsc#1234071).
• CVE-2024-53119: virtio/vsock: Fix accept_queue memory leak (bsc#1234073).
• CVE-2024-53122: mptcp: cope racing subflow creation in
  mptcp_rcv_space_adjust (bsc#1234076).
• CVE-2024-53125: bpf: sync_linked_regs() must preserve subreg_def
  (bsc#1234156).
• CVE-2024-53130: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
  (bsc#1234219).
• CVE-2024-53131: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
  (bsc#1234220).
• CVE-2024-53133: drm/amd/display: Handle dml allocation failure to avoid
  crash (bsc#1234221)
• CVE-2024-53134: pmdomain: imx93-blk-ctrl: correct remove path (bsc#1234159).
• CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt
  (bsc#1234381).
• CVE-2024-53160: rcu/kvfree: Fix data-race in __mod_timer / kvfree_call_rcu
  (bsc#1234810).
• CVE-2024-53161: EDAC/bluefield: Fix potential integer overflow
  (bsc#1234856).
• CVE-2024-53179: smb: client: fix use-after-free of signing key
  (bsc#1234921).
• CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended
  capability (bsc#1235004).
• CVE-2024-53216: nfsd: fix UAF when access ex_uuid or ex_stats (bsc#1235003).
• CVE-2024-53222: zram: fix NULL pointer in comp_algorithm_show()
  (bsc#1234974).
• CVE-2024-53234: erofs: handle NONHEAD !delta[1] lclusters gracefully
  (bsc#1235045).
• CVE-2024-53240: xen/netfront: fix crash when removing device (XSA-465
  bsc#1234281).
• CVE-2024-53241: x86/xen: use new hypercall functions instead of hypercall
  page (XSA-466 bsc#1234282).
• CVE-2024-56549: cachefiles: Fix NULL pointer dereference in object->file
  (bsc#1234912).
• CVE-2024-56566: mm/slub: Avoid list corruption when removing a slab from the
  full list (bsc#1235033).
• CVE-2024-56582: btrfs: fix use-after-free in btrfs_encoded_read_endio()
  (bsc#1235128).
• CVE-2024-56599: wifi: ath10k: avoid NULL pointer error during sdio remove
  (bsc#1235138).
• CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in
  rfcomm_sock_alloc() (bsc#1235056).
• CVE-2024-56755: netfs/fscache: Add a memory barrier for
  FSCACHE_VOLUME_CREATING (bsc#1234920).

The following non-security bugs were fixed:
https://lists.suse.com/pipermail/sle-security-updates/2025-January/020151.html